cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:27-01-2016
Executado por marco (administrador) em LAPTOP-FSB0V8JO (11-02-2016 08:15:59)
Executando a partir de C:\Users\marco\Downloads
Perfis Carregados: marco (Perfis Disponíveis: marco)
Platform: Windows 10 Home Single Language (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: FF)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Amazon Inc.) C:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(TODO: ) C:\ProgramData\Updata\GoogleUpdata.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
() C:\ProgramData\WindowsMsg\osmsg.exe
(BitTorrent Inc.) C:\Users\marco\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\marco\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe
(BitTorrent Inc.) C:\Users\marco\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(The Creative Assembly Ltd) C:\Program Files (x86)\SEGA\Total War ROME II - Emperor Edition\Rome2.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wuapihost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-11-12] (LogMeIn Inc.)
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912 2011-08-02] (DT Soft Ltd)
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Run: [osmsg] => C:\ProgramData\WindowsMsg\osmsg.exe [2036224 2016-02-04] ()
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Run: [uTorrent] => C:\Users\marco\AppData\Roaming\uTorrent\uTorrent.exe [2065944 2016-02-10] (BitTorrent Inc.)
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\MountPoints2: {76ebbaf2-c344-11e5-9c26-1c39470c8d59} - "E:\Autorun.exe"
ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => Nenhum Arquivo
Startup: C:\Users\marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2016-02-05]
ShortcutTarget: Curse.lnk -> C:\Users\marco\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

ProxyEnable: [.DEFAULT] => Proxy está habilitado.
ProxyServer: [.DEFAULT] => http=127.0.0.1:61109;https=127.0.0.1:61109
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\..\Interfaces\{5704013b-9dc5-4bb5-8596-89af3f674895}: [DhcpNameServer] 187.18.187.4 187.18.187.2
Tcpip\..\Interfaces\{7e64a55b-4643-40f4-8552-57ebf3d452ad}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46
SearchScopes: HKLM-x32 -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46&ts=1455129254
SearchScopes: HKLM-x32 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46&ts=1455129254
SearchScopes: HKU\S-1-5-21-4207123351-2558841533-2703887520-1001 -> DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4207123351-2558841533-2703887520-1001 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-4207123351-2558841533-2703887520-1001 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL = hxxp://search.yac.mx/web/?q={searchTerms}&type=ds&from=yac&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46&ts=1454872059
SearchScopes: HKU\S-1-5-21-4207123351-2558841533-2703887520-1001 -> {4AD43A14-AA87-4d4b-A345-B0BC1C61BC76} URL = hxxp://www.google.cn/search?hl=zh-CN&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4207123351-2558841533-2703887520-1001 -> {C3BBCD0B-9234-4d36-9151-EC49EE32FCE3} URL = hxxp://www.baidu.com/s?wd={searchTerms}&tn=28026190_dg&ie=utf-8
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-12-23] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-12-23] (Oracle Corporation)

FireFox:
========
FF ProfilePath: C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
FF NewTab: hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46
FF DefaultSearchEngine: yessearches
FF DefaultSearchEngine.US: data:text/plain,browser.search.defaultenginename.US=yessearches
FF SelectedSearchEngine: YAC Safe Search
FF Homepage: hxxp://google.com/
FF Keyword.URL: hxxp://www.yessearches.com/chrome.php?uid=DE63A734246A1A9212F5584D4B680417&ptid=sqr&ts=AHEpB3IpC34oBE..&v=20160121&mode=ffexttoolbar&q=
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-11] (Google Inc.)
FF Plugin HKU\S-1-5-21-4207123351-2558841533-2703887520-1001: gastecnologia.com.br/sf/cef64 -> C:\Users\marco\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll [Nenhum Arquivo]
FF SearchPlugin: C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\searchplugins\DD1B66D4.xml [2016-02-04]
FF SearchPlugin: C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\searchplugins\McSiteAdvisor.xml [2015-12-13]
FF SearchPlugin: C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\searchplugins\yac-safe-search-.xml [2016-02-07]
FF Extension: Português Brasileiro Language Pack - C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\wka901jo.default\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2015-12-01]
FF Extension: GsearchFinder - C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\@E9438230-A7DF-4D1F-8F2D-CA1D0F0F7924.xpi [2016-01-21]
FF Extension: xRocket Toolbar - C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\arthurj8283@gmail.com [2016-02-07] [não assinado]
FF Extension: Português Brasileiro Language Pack - C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\Extensions\langpack-pt-BR@firefox.mozilla.org.xpi [2016-02-10]
FF HKLM\...\Firefox\Extensions: [{DF371121-FC15-4E46-8DC1-7A1A108DC409}] - C:\Program Files\groover050220162330\Firefox\{DF371121-FC15-4E46-8DC1-7A1A108DC409}.xpi => não encontrado (a)
FF HKLM\...\Firefox\Extensions: [{0DA7B203-0BA9-477F-8563-38B199734B62}] - C:\Program Files\shopperz050220162301\Firefox\{0DA7B203-0BA9-477F-8563-38B199734B62}.xpi => não encontrado (a)
FF HKLM\...\Firefox\Extensions: [{D1F5921D-416A-4656-8B75-32B57057CA86}] - C:\Program Files\shopperz050220161443\Firefox\{D1F5921D-416A-4656-8B75-32B57057CA86}.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [{DF371121-FC15-4E46-8DC1-7A1A108DC409}] - C:\Program Files\groover050220162330\Firefox\{DF371121-FC15-4E46-8DC1-7A1A108DC409}.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [{0DA7B203-0BA9-477F-8563-38B199734B62}] - C:\Program Files\shopperz050220162301\Firefox\{0DA7B203-0BA9-477F-8563-38B199734B62}.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [{D1F5921D-416A-4656-8B75-32B57057CA86}] - C:\Program Files\shopperz050220161443\Firefox\{D1F5921D-416A-4656-8B75-32B57057CA86}.xpi => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [arthurj8283@gmail.com] - C:\Users\marco\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1\extensions\arthurj8283@gmail.com
FF HKU\S-1-5-21-4207123351-2558841533-2703887520-1001\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886D}] - C:\Users\marco\AppData\Local\GAS Tecnologia\GBBD\cef\xpi => não encontrado (a)

Chrome:
=======
CHR HomePage: Profile 1 -> hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46
CHR StartupUrls: Profile 1 -> "hxxp://search.yac.mx/?utm_source=b&utm_medium=iSafe&from=iSafe&uid=wdcxwd10jpvx-22jc3t0_wd-wxj1a65fcn46fcn46"
CHR Profile: C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-05]
CHR Extension: (Google Drive) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-05]
CHR Extension: (YouTube) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-05]
CHR Extension: (Google Search) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-05]
CHR Extension: (Ad.Block) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdnhmodopgbdolkppmmmakhfpglglaoj [2016-02-05]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-05]
CHR Extension: (Gmail) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-05]
CHR Profile: C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Apresentações) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-06]
CHR Extension: (Google Docs) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-06]
CHR Extension: (Google Drive) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-06]
CHR Extension: (YouTube) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-06]
CHR Extension: (Google Search) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-06]
CHR Extension: (Planilhas do Google) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-06]
CHR Extension: (Documentos Google off-line) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-06]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-06]
CHR Extension: (Gmail) - C:\Users\marco\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-06]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 Amazon 1Button App Service; c:\Program Files (x86)\Amazon\Amazon1ButtonApp\Amazon1ButtonService64.Exe [456000 2015-09-17] (Amazon Inc.)
R2 GoogleChromeUpdata; C:\ProgramData\Updata\GoogleUpdata.exe [2768384 2016-02-04] (TODO: ) [Arquivo não assinado]
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [359848 2015-12-23] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Arquivo não assinado]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Arquivo não assinado]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-11-12] (LogMeIn, Inc.)
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [398176 2015-07-09] (Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [450400 2015-07-09] (Acer Incorporated)
S2 QQRepair1204; C:\Windows\GJFix\QQRepair1204 [129504 2016-02-10] ()
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-26] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S2 Uisulba; "C:\Users\marco\AppData\Roaming\SywsuUugol\Womgeamt.exe" -cms [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 athr; C:\Windows\System32\drivers\athw10x.sys [4301304 2015-05-17] (Qualcomm Atheros Communications, Inc.)
R3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-07-10] (Microsoft Corporation)
R3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-07-10] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [270912 2015-12-15] (DT Soft Ltd)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-11-12] (LogMeIn Inc.)
R3 iaLPSS_I2C; C:\Windows\System32\drivers\iaLPSS_I2C.sys [132360 2015-06-15] (Intel Corporation)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21344 2015-07-09] (Acer Incorporated)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [183584 2015-06-12] (Intel Corporation)
S3 Qcamain; C:\Windows\System32\drivers\Qcamainx64.sys [2276352 2015-07-10] (Qualcomm Atheros, Inc.)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14688 2015-07-09] (Acer Incorporated)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-05-28] (Realtek )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [410880 2016-02-07] (Realsil Semiconductor Corporation)
S2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [11973 2015-12-17] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Arquivo não assinado]
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [868848 2015-12-15] (Duplex Secure Ltd.)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [51368 2015-05-11] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 BtFilter; \SystemRoot\system32\DRIVERS\btfilter.sys [X]
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]
S1 SRepairDrv; \??\C:\Windows\GJFix\SRepairDrv [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-02-11 07:54 - 2016-02-11 07:54 - 00008611 _____ C:\Users\marco\Downloads\Installer.vbs
2016-02-11 07:46 - 2016-02-11 07:46 - 00000000 ____D C:\Users\Todos os Usuários\Steam
2016-02-11 07:46 - 2016-02-11 07:46 - 00000000 ____D C:\Users\marco\AppData\Roaming\The Creative Assembly
2016-02-11 07:46 - 2016-02-11 07:46 - 00000000 ____D C:\ProgramData\Steam
2016-02-11 07:42 - 2016-02-11 07:42 - 00001318 _____ C:\Users\Public\Desktop\Total War ROME II - Emperor Edition.lnk
2016-02-11 07:42 - 2016-02-11 07:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
2016-02-11 07:14 - 2016-02-11 07:14 - 00016148 _____ C:\Windows\system32\LAPTOP-FSB0V8JO_marco_HistoryPrediction.bin
2016-02-11 07:05 - 2016-02-11 07:05 - 00000000 ____D C:\Program Files (x86)\SEGA
2016-02-11 00:31 - 2016-02-11 00:31 - 00110393 _____ C:\Users\marco\Downloads\[BrunoPthelp]total.war.rome.ii.emperor.edition.multi9.prophet.torrent
2016-02-11 00:10 - 2016-02-11 00:10 - 00002311 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-11 00:10 - 2016-02-11 00:10 - 00002299 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-11 00:09 - 2016-02-11 08:14 - 00000928 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-11 00:09 - 2016-02-11 00:14 - 00000924 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-11 00:09 - 2016-02-11 00:09 - 00003986 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-11 00:09 - 2016-02-11 00:09 - 00003754 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-11 00:08 - 2016-02-11 00:08 - 00987728 _____ (Google Inc.) C:\Users\marco\Downloads\ChromeSetup(1).exe
2016-02-10 23:45 - 2016-02-11 00:49 - 00000000 ____D C:\Users\marco\AppData\LocalLow\uTorrent
2016-02-07 19:20 - 2016-02-07 19:20 - 09898752 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2016-02-07 19:20 - 2016-02-07 19:20 - 00410880 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsUer.sys
2016-02-07 18:51 - 2016-02-07 18:51 - 00050125 _____ C:\Users\marco\Downloads\Shortcut.txt
2016-02-07 18:31 - 2016-02-07 18:31 - 00016148 _____ C:\Windows\system32\LAPTOP-FSB0V8JO_marco_np4ggej_HistoryPrediction.bin
2016-02-07 18:18 - 2016-02-07 18:18 - 00000000 ____D C:\Users\Todos os Usuários\TXQMPC
2016-02-07 18:18 - 2016-02-07 18:18 - 00000000 ____D C:\ProgramData\TXQMPC
2016-02-07 18:16 - 2016-02-07 18:38 - 00000000 ____D C:\Users\marco_np4ggej\AppData\Roaming\Mozilla
2016-02-07 18:11 - 2016-02-07 18:11 - 00000000 ____D C:\Users\marco_np4ggej\AppData\Roaming\Elex-tech
2016-02-07 18:10 - 2016-02-07 18:39 - 00000000 ____D C:\Users\marco_np4ggej
2016-02-07 17:44 - 2016-02-10 15:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-07 17:14 - 2016-02-11 08:15 - 07620872 _____ (Goversoft LLC) C:\Users\marco\Downloads\privazer_free.exe
2016-02-07 16:55 - 2016-02-07 16:56 - 00987728 _____ (Google Inc.) C:\Users\marco\Downloads\ChromeSetup.exe
2016-02-07 16:48 - 2016-02-11 04:42 - 00004184 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{FF158913-E663-4BCC-B53D-5A7E38CD97E4}
2016-02-07 15:57 - 2016-02-07 15:57 - 00000000 ____D C:\Windows\system32\log
2016-02-07 15:57 - 2016-02-07 15:57 - 00000000 ____D C:\Users\marco\AppData\Roaming\Elex-tech
2016-02-07 15:56 - 2016-02-07 15:57 - 27989848 _____ (Elex do Brasil Participações Ltda) C:\Users\marco\Downloads\yet_another_cleaner_sk_7004786.exe
2016-02-06 22:10 - 2016-02-07 18:51 - 00033342 _____ C:\Users\marco\Downloads\Addition.txt
2016-02-06 22:02 - 2016-02-11 08:15 - 00020143 _____ C:\Users\marco\Downloads\FRST.txt
2016-02-06 22:02 - 2016-02-11 08:15 - 00000000 ____D C:\FRST
2016-02-06 22:01 - 2016-02-06 22:02 - 02370560 _____ (Farbar) C:\Users\marco\Downloads\FRST64.exe
2016-02-06 21:02 - 2016-02-06 21:03 - 04399960 _____ C:\Users\marco\Downloads\FBCIMSetup.exe
2016-02-06 20:48 - 2016-02-06 20:48 - 00000000 ____D C:\Users\marco\AppData\Local\Bluestacks
2016-02-06 18:14 - 2016-02-06 18:14 - 00000000 ____D C:\Users\marco\AppData\Local\Macromedia
2016-02-06 18:12 - 2016-02-06 20:00 - 00000000 ____D C:\Users\Todos os Usuários\BlueStacksSetup
2016-02-06 18:12 - 2016-02-06 20:00 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-02-06 18:07 - 2016-02-06 18:11 - 267213632 _____ (BlueStack Systems Inc.) C:\Users\marco\Downloads\BlueStacks2_native.exe
2016-02-05 22:45 - 2016-02-05 22:45 - 00000000 ____D C:\Windows\system32\qac
2016-02-05 22:38 - 2016-02-06 19:20 - 00000000 ____D C:\AdwCleaner
2016-02-05 22:38 - 2016-02-05 22:38 - 01508352 _____ C:\Users\marco\Downloads\AdwCleaner.exe
2016-02-05 19:55 - 2016-02-05 19:55 - 00000000 ____D C:\Users\marco\Intel
2016-02-05 19:48 - 2016-02-05 19:48 - 00003320 _____ C:\Windows\System32\Tasks\{601F1756-7C5E-4BE5-944A-F9F72BAD0B9C}
2016-02-05 19:47 - 2016-02-07 16:38 - 00000000 ____D C:\Users\Todos os Usuários\OWdMO
2016-02-05 19:47 - 2016-02-07 16:38 - 00000000 ____D C:\ProgramData\OWdMO
2016-02-05 19:46 - 2016-02-05 19:46 - 00003122 _____ C:\Windows\System32\Tasks\ttwifi
2016-02-05 19:46 - 2016-02-05 19:46 - 00003016 _____ C:\Windows\System32\Tasks\osTip
2016-02-05 19:46 - 2016-02-05 19:46 - 00000000 ____D C:\Users\Todos os Usuários\WindowsMsg
2016-02-05 19:46 - 2016-02-05 19:46 - 00000000 ____D C:\Users\Todos os Usuários\Updata
2016-02-05 19:46 - 2016-02-05 19:46 - 00000000 ____D C:\Users\marco\AppData\Local\Tempfolder
2016-02-05 19:46 - 2016-02-05 19:46 - 00000000 ____D C:\ProgramData\WindowsMsg
2016-02-05 19:46 - 2016-02-05 19:46 - 00000000 ____D C:\ProgramData\Updata
2016-02-05 19:45 - 2016-02-05 19:45 - 00003416 _____ C:\Windows\System32\Tasks\Viubb
2016-02-05 19:15 - 2016-02-05 19:15 - 00003418 _____ C:\Windows\System32\Tasks\Buiwmev
2016-02-05 19:14 - 2016-02-05 19:12 - 00000967 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-02-05 19:11 - 2016-02-05 19:11 - 00003422 _____ C:\Windows\System32\Tasks\Wiwlud
2016-02-05 19:11 - 2016-02-05 19:11 - 00000000 ____D C:\Users\marco\AppData\LocalLow\Company
2016-02-05 19:11 - 2016-02-05 19:11 - 00000000 ____D C:\uninst
2016-02-05 03:16 - 2016-02-06 16:39 - 00000037 _____ C:\Users\marco\Desktop\séries.txt
2016-02-04 15:14 - 2016-02-07 16:38 - 00000000 ____D C:\Users\Todos os Usuários\2WdM2
2016-02-04 15:14 - 2016-02-07 16:38 - 00000000 ____D C:\ProgramData\2WdM2
2016-02-04 01:56 - 2015-03-05 02:12 - 00421784 _____ (Baidu, Inc.) C:\Windows\system32\BdSandboxDll64.dll
2016-02-04 01:56 - 2015-03-05 02:12 - 00332320 _____ (Baidu, Inc.) C:\Windows\SysWOW64\BdSandboxDll32.dll
2016-02-04 01:52 - 2016-02-04 01:52 - 00000000 ____D C:\Users\marco\AppData\Local\ElevatedDiagnostics
2016-02-04 01:51 - 2016-02-04 01:51 - 00003280 _____ C:\Windows\System32\Tasks\{F411FB24-EE32-4B94-8E58-3355B0D562AC}
2016-02-04 01:49 - 2016-02-04 01:49 - 00003292 _____ C:\Windows\System32\Tasks\{978AC345-9DA8-4730-ADFF-341E75D0C530}
2016-02-04 01:15 - 2016-02-04 01:15 - 00005120 _____ C:\Users\marco\AppData\Roaming\GiftBag.db
2016-02-04 01:14 - 2016-02-04 01:07 - 00127800 _____ (Tencent Technology(Shenzhen) Company Limited) C:\Windows\system32\Drivers\TAOKernelEx64.sys
2016-02-04 01:13 - 2016-02-10 15:33 - 00000000 ____D C:\Windows\GJFix
2016-02-04 01:09 - 2016-02-07 16:06 - 00002722 _____ C:\Windows\System32\Tasks\060184C3-9766-46a0-B258-F4518A0B2633
2016-02-04 01:09 - 2016-02-04 01:09 - 00000000 ____D C:\Users\Todos os Usuários\Baidu Security
2016-02-04 01:09 - 2016-02-04 01:09 - 00000000 ____D C:\Users\marco\AppData\LocalLow\BAVData
2016-02-04 01:09 - 2016-02-04 01:09 - 00000000 ____D C:\ProgramData\Baidu Security
2016-02-04 01:05 - 2016-02-04 01:05 - 00000000 ____D C:\Program Files (x86)\Baidu Security
2016-02-04 01:03 - 2016-02-05 22:46 - 00000000 ____D C:\Users\marco\AppData\Roaming\BavMini
2016-02-04 01:03 - 2016-02-04 01:03 - 00000000 ____D C:\Users\Public\Documents\Baidu
2016-02-04 01:01 - 2016-02-05 21:36 - 00000000 ____D C:\Users\marco\AppData\Roaming\Baidu
2016-02-04 01:01 - 2016-02-04 01:56 - 00000000 ____D C:\Users\Todos os Usuários\Baidu
2016-02-04 01:01 - 2016-02-04 01:56 - 00000000 ____D C:\ProgramData\Baidu
2016-02-04 01:01 - 2016-02-04 01:02 - 00000000 ____D C:\Program Files (x86)\Baidu
2016-02-04 00:59 - 2016-02-04 01:16 - 00000286 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-02-04 00:59 - 2016-02-04 01:16 - 00000286 __RSH C:\ProgramData\ntuser.pol
2016-02-04 00:58 - 2016-02-04 00:58 - 00000000 ____D C:\Program Files (x86)\t_201602040058
2016-02-04 00:56 - 2016-02-04 01:11 - 00000000 ____D C:\Users\marco\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-02-04 00:55 - 2016-02-04 00:56 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-02-03 17:13 - 2016-02-05 19:25 - 00001524 _____ C:\Users\marco\Desktop\GameDevTycoon - Atalho.lnk
2016-02-03 16:22 - 2016-02-04 17:11 - 00000000 ____D C:\Users\marco\AppData\Local\Game Dev Tycoon - Steam
2016-02-03 15:31 - 2016-02-03 15:31 - 00000000 ____D C:\Users\marco\AppData\Roaming\MMFApplications
2016-02-03 15:30 - 2016-02-03 15:51 - 00000000 ____D C:\Users\marco\Documents\The Escapists
2016-02-03 15:29 - 2016-02-03 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tribo Gamer
2016-02-03 15:29 - 2016-02-03 15:29 - 00000000 ____D C:\Program Files (x86)\Tribo Gamer
2016-02-03 15:03 - 2016-02-05 19:25 - 00001753 _____ C:\Users\Public\Desktop\The Escapists.lnk
2016-02-03 15:03 - 2016-02-03 15:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Escapists [GOG.com]
2016-02-03 15:02 - 2016-02-03 15:02 - 00000000 ____D C:\GOG Games
2016-02-03 14:57 - 2016-02-11 03:40 - 00000000 ____D C:\Users\marco\AppData\Roaming\Curse Client
2016-02-03 14:57 - 2016-02-05 19:25 - 00001198 _____ C:\Users\marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk
2016-02-03 14:57 - 2016-02-05 19:25 - 00001192 _____ C:\Users\marco\Desktop\Curse.lnk
2016-02-03 14:56 - 2016-02-03 14:56 - 00000000 ____D C:\Users\marco\AppData\Roaming\Curse
2016-02-03 13:34 - 2016-02-03 13:34 - 00000000 ____D C:\Users\marco\Documents\League of Legends
2016-01-30 17:47 - 2016-02-05 19:25 - 00002038 _____ C:\Users\marco\Desktop\The Sims 3.lnk
2016-01-29 23:28 - 2016-01-30 17:27 - 00000000 ____D C:\Users\Todos os Usuários\Electronic Arts
2016-01-29 23:28 - 2016-01-30 17:27 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-01-29 23:27 - 2016-01-29 23:27 - 00000060 _____ C:\Windows\wininit.ini
2016-01-27 16:54 - 2016-01-27 16:54 - 00000000 ____D C:\Users\marco\Documents\Electronic Arts
2016-01-27 16:52 - 2016-01-27 16:52 - 00000000 ____D C:\Program Files (x86)\Microsoft WSE
2016-01-27 16:52 - 2008-09-04 21:22 - 00447752 ____R (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2016-01-27 16:36 - 2016-02-11 00:13 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2016-01-23 21:06 - 2016-01-23 21:06 - 00000000 ____D C:\Users\marco\AppData\Roaming\Java
2016-01-23 16:09 - 2016-01-23 16:09 - 00000000 ____D C:\Users\marco\Desktop\Replays
2016-01-21 21:20 - 2016-01-26 20:16 - 00000000 ____D C:\Users\marco\Desktop\mods
2016-01-21 15:57 - 2016-02-11 00:18 - 00000000 ____D C:\Users\marco\Desktop\arquivos
2016-01-21 15:56 - 2016-01-21 15:56 - 37107315 _____ (Adobe Systems, Inc.) C:\Users\marco\Desktop\punkomatic2.exe
2016-01-21 15:36 - 2016-01-21 15:38 - 00000000 ____D C:\Users\marco\Desktop\minecraft
2016-01-18 19:34 - 2016-01-18 19:34 - 00000000 ____D C:\Users\marco\AppData\Local\AAA_Internet_Publishing,_
2016-01-18 19:34 - 2015-04-08 15:15 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SPORDER.DLL
2016-01-12 20:35 - 2016-01-05 00:07 - 02463704 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-01-12 20:35 - 2016-01-05 00:07 - 00377592 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-01-12 20:35 - 2016-01-05 00:06 - 08022368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-12 20:35 - 2016-01-05 00:06 - 01991120 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-01-12 20:35 - 2016-01-05 00:06 - 01270104 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-01-12 20:35 - 2016-01-05 00:06 - 01063504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-01-12 20:35 - 2016-01-05 00:06 - 00119800 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 02824248 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 02641928 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 01591848 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 01150816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00862056 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00787720 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 00784136 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00779928 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00772448 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00751992 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 00667856 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 00249464 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 00243248 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00233992 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00115704 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-01-12 20:35 - 2016-01-05 00:04 - 00090912 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-01-12 20:35 - 2016-01-05 00:04 - 00083704 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-01-12 20:35 - 2016-01-04 23:59 - 00781976 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-01-12 20:35 - 2016-01-04 23:52 - 00441696 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-01-12 20:35 - 2016-01-04 23:50 - 01817064 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-01-12 20:35 - 2016-01-04 23:50 - 01083072 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-01-12 20:35 - 2016-01-04 23:50 - 00723648 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-01-12 20:35 - 2016-01-04 23:50 - 00345080 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-01-12 20:35 - 2016-01-04 23:50 - 00251544 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-01-12 20:35 - 2016-01-04 23:50 - 00205072 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-01-12 20:35 - 2016-01-04 23:31 - 01365576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-12 20:35 - 2016-01-04 23:30 - 02459096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-01-12 20:35 - 2016-01-04 23:30 - 02162064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-01-12 20:35 - 2016-01-04 23:30 - 02152744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-01-12 20:35 - 2016-01-04 23:30 - 01106872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-01-12 20:35 - 2016-01-04 23:30 - 00882208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-01-12 20:35 - 2016-01-04 23:30 - 00368776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-01-12 20:35 - 2016-01-04 23:30 - 00232896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-01-12 20:35 - 2016-01-04 23:30 - 00100712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-12 20:35 - 2016-01-04 23:29 - 00208688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 02445128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00714808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00696192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-01-12 20:35 - 2016-01-04 23:28 - 00695752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-12 20:35 - 2016-01-04 23:28 - 00645144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00635312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00497896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00277400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-01-12 20:35 - 2016-01-04 23:28 - 00116728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00107952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-01-12 20:35 - 2016-01-04 23:28 - 00082096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-01-12 20:35 - 2016-01-04 23:28 - 00072808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-01-12 20:35 - 2016-01-04 23:21 - 00658528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-01-12 20:35 - 2016-01-04 23:18 - 21873152 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-01-12 20:35 - 2016-01-04 23:15 - 24592896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-01-12 20:35 - 2016-01-04 23:15 - 00931328 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-12 20:35 - 2016-01-04 23:15 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2016-01-12 20:35 - 2016-01-04 23:15 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\usermgrcli.dll
2016-01-12 20:35 - 2016-01-04 23:10 - 00539136 _____ (Microsoft Corporation) C:\Windows\system32\mfh264enc.dll
2016-01-12 20:35 - 2016-01-04 23:10 - 00305776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-01-12 20:35 - 2016-01-04 23:10 - 00278424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-01-12 20:35 - 2016-01-04 23:10 - 00188032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-01-12 20:35 - 2016-01-04 23:09 - 01234944 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-01-12 20:35 - 2016-01-04 23:09 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-12 20:35 - 2016-01-04 23:02 - 01672192 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-12 20:35 - 2016-01-04 23:02 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-12 20:35 - 2016-01-04 23:02 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-12 20:35 - 2016-01-04 23:01 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-12 20:35 - 2016-01-04 23:00 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-12 20:35 - 2016-01-04 23:00 - 00771072 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-01-12 20:35 - 2016-01-04 22:59 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-12 20:35 - 2016-01-04 22:57 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2016-01-12 20:35 - 2016-01-04 22:57 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-01-12 20:35 - 2016-01-04 22:57 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-12 20:35 - 2016-01-04 22:56 - 07523840 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-01-12 20:35 - 2016-01-04 22:51 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-12 20:35 - 2016-01-04 22:51 - 01009664 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-12 20:35 - 2016-01-04 22:51 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-01-12 20:35 - 2016-01-04 22:51 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-01-12 20:35 - 2016-01-04 22:51 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-01-12 20:35 - 2016-01-04 22:44 - 00159744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2016-01-12 20:35 - 2016-01-04 22:44 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usermgrcli.dll
2016-01-12 20:35 - 2016-01-04 22:43 - 19324928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-01-12 20:35 - 2016-01-04 22:42 - 00871936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-12 20:35 - 2016-01-04 22:38 - 00556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfh264enc.dll
2016-01-12 20:35 - 2016-01-04 22:32 - 01541632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-12 20:35 - 2016-01-04 22:32 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-12 20:35 - 2016-01-04 22:31 - 00563200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-12 20:35 - 2016-01-04 22:31 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-12 20:35 - 2016-01-04 22:30 - 18802176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-01-12 20:35 - 2016-01-04 22:29 - 00650240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-12 20:35 - 2016-01-04 22:29 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-12 20:35 - 2016-01-04 22:26 - 00373760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-12 20:35 - 2016-01-04 22:24 - 05454848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-01-12 20:35 - 2016-01-04 22:20 - 00890880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-12 20:35 - 2016-01-04 22:19 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-12 20:35 - 2016-01-04 22:19 - 00747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-01-12 20:35 - 2016-01-04 22:19 - 00409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-01-12 20:35 - 2016-01-04 22:19 - 00404992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-01-12 12:15 - 2016-02-05 19:49 - 00000866 _____ C:\Users\marco\Desktop\LoL.lnk

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-02-11 08:19 - 2015-12-14 01:13 - 00000000 ____D C:\Users\marco\AppData\Roaming\uTorrent
2016-02-11 07:04 - 2015-12-15 22:40 - 00000000 ____D C:\Users\Todos os Usuários\DAEMON Tools Lite
2016-02-11 07:04 - 2015-12-15 22:40 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-02-11 03:52 - 2015-07-10 07:55 - 00000000 ____D C:\Windows\CbsTemp
2016-02-11 03:40 - 2015-11-30 18:24 - 00000000 ____D C:\Users\marco\AppData\Roaming\Skype
2016-02-11 03:40 - 2015-11-30 15:41 - 00000000 ____D C:\Program Files (x86)\Steam
2016-02-11 00:32 - 2015-12-14 07:55 - 00000000 ____D C:\Users\marco\Downloads\torrents
2016-02-11 00:13 - 2015-08-12 23:42 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-02-11 00:09 - 2015-12-10 23:40 - 00000000 ____D C:\Program Files (x86)\Google
2016-02-10 21:20 - 2015-12-24 19:11 - 00000000 ____D C:\Users\marco\AppData\Local\LogMeIn Hamachi
2016-02-10 21:20 - 2015-11-30 15:32 - 00000000 ___RD C:\Users\marco\OneDrive
2016-02-10 20:56 - 2015-11-30 15:28 - 00000000 __SHD C:\Users\marco\IntelGraphicsProfiles
2016-02-10 20:56 - 2015-11-30 15:23 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-02-10 15:48 - 2015-07-10 08:04 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-10 15:48 - 2015-07-10 08:04 - 00000000 ____D C:\Windows\AppReadiness
2016-02-10 15:40 - 2015-08-13 03:50 - 00782022 _____ C:\Windows\system32\prfh0416.dat
2016-02-10 15:40 - 2015-08-13 03:50 - 00153010 _____ C:\Windows\system32\prfc0416.dat
2016-02-10 15:40 - 2015-07-16 01:35 - 01810446 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-10 15:40 - 2015-07-10 08:02 - 00000000 ____D C:\Windows\INF
2016-02-10 15:33 - 2015-07-16 01:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-02-10 15:33 - 2015-07-10 09:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-07 19:20 - 2015-08-12 23:57 - 00000000 ____D C:\Windows\SysWOW64\sda
2016-02-07 18:32 - 2015-07-10 06:05 - 00524288 ___SH C:\Windows\system32\config\BBI
2016-02-07 18:31 - 2015-08-12 23:47 - 00000000 ____D C:\Windows\system32\DAX2
2016-02-07 18:31 - 2015-08-12 23:46 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-02-07 18:31 - 2015-08-12 23:46 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-02-07 18:28 - 2015-08-13 00:06 - 00000000 ____D C:\Users\Todos os Usuários\CyberLink
2016-02-07 18:28 - 2015-08-13 00:06 - 00000000 ____D C:\Users\Public\CyberLink
2016-02-07 18:28 - 2015-08-13 00:06 - 00000000 ____D C:\ProgramData\CyberLink
2016-02-07 18:11 - 2015-07-16 01:34 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-02-07 16:05 - 2015-10-30 16:33 - 00000000 ___HD C:\$WINDOWS.~BT
2016-02-06 21:07 - 2015-11-30 18:02 - 00000000 ____D C:\Users\marco\AppData\Local\CrashDumps
2016-02-06 20:48 - 2015-07-10 08:04 - 00000000 __RHD C:\Users\Public\Libraries
2016-02-06 20:37 - 2015-12-23 13:43 - 00000000 ____D C:\Users\marco\AppData\Roaming\.minecraft
2016-02-05 22:46 - 2015-07-10 09:20 - 00198912 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-05 21:15 - 2015-07-16 01:39 - 00000000 ____D C:\Program Files\Acer
2016-02-05 21:15 - 2015-07-16 01:36 - 00000000 ____D C:\Users\Todos os Usuários\OEM
2016-02-05 21:15 - 2015-07-16 01:36 - 00000000 ____D C:\ProgramData\OEM
2016-02-05 21:15 - 2015-07-16 01:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2016-02-05 21:08 - 2015-07-16 01:36 - 00000000 ____D C:\Program Files (x86)\Acer
2016-02-05 21:05 - 2015-12-17 11:42 - 00000000 ____D C:\Users\marco\AppData\Roaming\Foxit Software
2016-02-05 19:55 - 2015-11-30 15:25 - 00000000 ____D C:\Users\marco
2016-02-05 19:49 - 2015-07-16 01:38 - 00001911 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-02-05 19:25 - 2015-12-24 19:11 - 00000977 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2016-02-05 19:25 - 2015-12-15 22:41 - 00002005 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-02-05 19:25 - 2015-12-14 09:22 - 00001866 _____ C:\Users\marco\Desktop\Steam.lnk
2016-02-05 19:25 - 2015-12-14 01:14 - 00001006 _____ C:\Users\marco\Desktop\µTorrent.lnk
2016-02-05 19:25 - 2015-12-13 10:38 - 00001786 _____ C:\Users\marco\Desktop\PSCS6 - Atalho.lnk
2016-02-05 19:25 - 2015-11-30 18:26 - 00001217 _____ C:\Users\marco\Desktop\Skype - Atalho.lnk
2016-02-05 19:25 - 2015-11-30 15:32 - 00002481 _____ C:\Users\marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-02-05 19:25 - 2015-11-30 15:31 - 00001343 _____ C:\Users\marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gerenciador de áudio HD.lnk
2016-02-05 01:44 - 2015-07-10 08:04 - 00000000 ____D C:\Windows\system32\NDF
2016-02-05 01:39 - 2015-11-30 22:42 - 00000000 ____D C:\Users\marco\AppData\Local\Steam
2016-02-04 18:29 - 2015-12-28 21:32 - 00000000 ____D C:\Program Files (x86)\stronghold
2016-02-04 15:29 - 2015-11-30 15:32 - 00000000 ____D C:\Users\marco\AppData\Local\acer
2016-02-04 15:16 - 2015-12-13 23:57 - 00000000 ____D C:\Program Files\3dsexvilla
2016-02-04 02:42 - 2015-11-30 15:31 - 00000000 ____D C:\Users\marco\AppData\Local\clear.fi
2016-02-04 01:59 - 2015-08-12 23:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-02-04 01:58 - 2015-07-10 08:04 - 00000000 ____D C:\Users\Todos os Usuários\regid.1991-06.com.microsoft
2016-02-04 01:58 - 2015-07-10 08:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-02-04 01:15 - 2015-11-30 15:28 - 00000000 ____D C:\Users\marco\AppData\Local\VirtualStore
2016-02-04 00:59 - 2015-07-10 08:04 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2016-02-04 00:59 - 2015-07-10 08:04 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2016-02-02 19:47 - 2015-07-10 08:06 - 00828920 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-02-02 19:47 - 2015-07-10 08:06 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-31 14:46 - 2015-12-04 19:21 - 00000132 _____ C:\Users\marco\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2016-01-26 21:00 - 2015-12-01 12:42 - 00000000 ____D C:\Windows\system32\MRT
2016-01-26 20:51 - 2015-12-01 12:42 - 143671360 ____N (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-20 22:16 - 2015-07-10 08:04 - 00000000 ____D C:\Windows\rescache
2016-01-20 18:12 - 2016-01-11 19:26 - 00000000 ____D C:\Users\marco\Desktop\lolzinhu
2016-01-12 12:10 - 2015-07-10 08:04 - 00000000 ____D C:\Windows\system32\oobe

==================== Arquivos na raiz de alguns diretórios =======

2016-02-04 01:15 - 2016-02-04 01:15 - 0005120 _____ () C:\Users\marco\AppData\Roaming\GiftBag.db
2015-12-04 19:21 - 2016-01-31 14:46 - 0000132 _____ () C:\Users\marco\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2015-08-12 23:47 - 2015-08-12 23:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Alguns arquivos em TEMP:
====================
C:\Users\marco\AppData\Local\Temp\AcerDocsSetup.exe
C:\Users\marco\AppData\Local\Temp\AcerPortalSetup.exe
C:\Users\marco\AppData\Local\Temp\AOPSetup.exe
C:\Users\marco\AppData\Local\Temp\comver.dll
C:\Users\marco\AppData\Local\Temp\EAD2D11.exe
C:\Users\marco\AppData\Local\Temp\EAD4484.exe
C:\Users\marco\AppData\Local\Temp\FoxitUpdater.exe
C:\Users\marco\AppData\Local\Temp\HD-Logger-Native.dll
C:\Users\marco\AppData\Local\Temp\HD-ShortcutHandler.dll
C:\Users\marco\AppData\Local\Temp\launcher_vs2010_sp1_vcredist_x86.exe
C:\Users\marco\AppData\Local\Temp\McCSPInstall.dll
C:\Users\marco\AppData\Local\Temp\mccspuninstall.exe
C:\Users\marco\AppData\Local\Temp\octDDB7.tmp.exe
C:\Users\marco\AppData\Local\Temp\octDEDB.tmp.exe
C:\Users\marco\AppData\Local\Temp\octE87F.tmp.exe
C:\Users\marco\AppData\Local\Temp\oprun3237.exe
C:\Users\marco\AppData\Local\Temp\qqpcmgr_v11.2.17058.221_45129_Silence.exe
C:\Users\marco\AppData\Local\Temp\SkypeSetup.exe
C:\Users\marco\AppData\Local\Temp\sqlite3.dll
C:\Users\marco\AppData\Local\Temp\uninstall.exe
C:\Users\marco\AppData\Local\Temp\UninstallEADM.dll
C:\Users\marco\AppData\Local\Temp\UninstallModule.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-02-01 23:16

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité