cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:25-04-2016
Executado por Daniel (administrador) em DANIEL-PC (26-04-2016 14:31:35)
Executando a partir de C:\Users\Daniel\Downloads
Perfis Carregados: Daniel (Perfis Disponíveis: Daniel)
Platform: Windows 7 Ultimate (X64) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
(HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(tsvr.com) C:\Users\Daniel\AppData\Roaming\TSv\TSvr.exe
() C:\Windows\SysWOW64\srvany.exe
() C:\Windows\KMService.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(WFini LIMITED) C:\ProgramData\cwinpc\WFini.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.1.6.0\WsAppService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\GbpSv.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Akamai Technologies, Inc.) C:\Users\Daniel\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Daniel\AppData\Local\Akamai\netsession_win.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [2115664 2009-03-26] (Dell Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2016-01-19] (AVAST Software)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [716224 2016-03-23] (Autodesk, Inc.)
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2015-11-04] (Banco do Brasil)
HKU\S-1-5-21-2727650406-208280218-3504573773-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Daniel\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2727650406-208280218-3504573773-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
HKU\S-1-5-21-2727650406-208280218-3504573773-1001\...\Policies\Explorer: []
HKU\S-1-5-21-2727650406-208280218-3504573773-1001\...\MountPoints2: {c7e9f302-bf8d-11e5-8235-0025645a92da} - H:\AutoRun.exe
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1283112 2016-02-02] (Autodesk, Inc.)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\Program Files (x86)\GbPlugin\gbieh.dll [1945472 2015-11-04] (Banco do Brasil)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.30.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-01-19] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2016-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => Nenhum Arquivo
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => Nenhum Arquivo
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2016-04-26]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2016-03-07]
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Winsock: Catalog5 10 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [26512 2014-06-06] (National Instruments Corporation)
Winsock: Catalog5-x64 10 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [28560 2014-06-06] (National Instruments Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3D7DA851-B0EB-46D9-9E81-EDFC830CF860}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ybr_16_04¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtByCyD0E0EyC0CtD0FtCyE0C0DyCtN0D0Tzu0StCyEzzzytN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0CyC0Azy0B0BtGtCyBzz0DtGyEzzyDyBtGtAtBzy0AtGyCzztByEyB0F0D0A0D0A0ByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0E0Ezy0DyBtC0FtGyE0CyC0FtGyE0A0C0BtG0A0CyB0AtGtC0FyC0D0AyD0FyDyByDyCzz2QtN0A0LzuyE%26cr%3D122570459%26a%3Dwbf_ybr_16_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ybr_16_04¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtByCyD0E0EyC0CtD0FtCyE0C0DyCtN0D0Tzu0StCyEzzzytN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0CyC0Azy0B0BtGtCyBzz0DtGyEzzyDyBtGtAtBzy0AtGyCzztByEyB0F0D0A0D0A0ByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0E0Ezy0DyBtC0FtGyE0CyC0FtGyE0A0C0BtG0A0CyB0AtGtC0FyC0D0AyD0FyDyByDyCzz2QtN0A0LzuyE%26cr%3D122570459%26a%3Dwbf_ybr_16_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://minilua.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://minilua.com/
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://minilua.com/
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://minilua.com/
HKU\S-1-5-21-2727650406-208280218-3504573773-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://minilua.com/
HKU\S-1-5-21-2727650406-208280218-3504573773-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://minilua.com/
HKU\S-1-5-21-2727650406-208280218-3504573773-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://minilua.com/
HKU\S-1-5-21-2727650406-208280218-3504573773-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://minilua.com/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ybr_16_04¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtByCyD0E0EyC0CtD0FtCyE0C0DyCtN0D0Tzu0StCyEzzzytN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0CyC0Azy0B0BtGtCyBzz0DtGyEzzyDyBtGtAtBzy0AtGyCzztByEyB0F0D0A0D0A0ByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0E0Ezy0DyBtC0FtGyE0CyC0FtGyE0A0C0BtG0A0CyB0AtGtC0FyC0D0AyD0FyDyByDyCzz2QtN0A0LzuyE%26cr%3D122570459%26a%3Dwbf_ybr_16_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ybr_16_04¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtByCyD0E0EyC0CtD0FtCyE0C0DyCtN0D0Tzu0StCyEzzzytN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0CyC0Azy0B0BtGtCyBzz0DtGyEzzyDyBtGtAtBzy0AtGyCzztByEyB0F0D0A0D0A0ByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0E0Ezy0DyBtC0FtGyE0CyC0FtGyE0A0C0BtG0A0CyB0AtGtC0FyC0D0AyD0FyDyByDyCzz2QtN0A0LzuyE%26cr%3D122570459%26a%3Dwbf_ybr_16_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2727650406-208280218-3504573773-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ybr_16_04¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtByCyD0E0EyC0CtD0FtCyE0C0DyCtN0D0Tzu0StCyEzzzytN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0CyC0Azy0B0BtGtCyBzz0DtGyEzzyDyBtGtAtBzy0AtGyCzztByEyB0F0D0A0D0A0ByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0E0Ezy0DyBtC0FtGyE0CyC0FtGyE0A0C0BtG0A0CyB0AtGtC0FyC0D0AyD0FyDyByDyCzz2QtN0A0LzuyE%26cr%3D122570459%26a%3Dwbf_ybr_16_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2727650406-208280218-3504573773-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://br.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_ybr_16_04¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtByCyD0E0EyC0CtD0FtCyE0C0DyCtN0D0Tzu0StCyEzzzytN1L2XzutAtFtCyBtFzytFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtB0CyC0Azy0B0BtGtCyBzz0DtGyEzzyDyBtGtAtBzy0AtGyCzztByEyB0F0D0A0D0A0ByC2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0E0E0Ezy0DyBtC0FtGyE0CyC0FtGyE0A0C0BtG0A0CyB0AtGtC0FyC0D0AyD0FyDyByDyCzz2QtN0A0LzuyE%26cr%3D122570459%26a%3Dwbf_ybr_16_04%26os_ver%3D6.1%26os%3DWindows%2B7%2BUltimate&p={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-03-08] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-01-19] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-03-08] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-21] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-01-19] (AVAST Software)
BHO-x32: Auxiliar de Conexão de Conta da Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\Program Files (x86)\GbPlugin\gbieh.dll [2015-11-04] (Banco do Brasil)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-21] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2009-07-13] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2009-07-13] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-21] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-01-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-01-30] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-01-19]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-01-19]

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com.br/
CHR StartupUrls: Default -> "hxxp://www.google.com.br/"
CHR DefaultSearchURL: Default -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Flash Video Downloader) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiimdkdngfcipjohbjenkahhlhccpdbc [2016-04-14]
CHR Extension: (Google Drive) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-30]
CHR Extension: (Search Manager) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bahkljhhdeciiaodlkppoonappfnheoi [2016-04-25]
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-30]
CHR Extension: (Google Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-30]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Gmail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-30]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1231376 2016-03-23] (Autodesk Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2016-01-19] (AVAST Software)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [Arquivo não assinado]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-14] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-04-14] (Dropbox, Inc.)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\GbpSv.exe [593120 2015-11-04] (GAS Tecnologia)
R2 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2010-10-27] (Hewlett-Packard Company) [Arquivo não assinado]
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [145920 2010-10-27] (HP) [Arquivo não assinado]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [26168 2015-12-20] (Hewlett-Packard Company)
R2 IhPul; C:\Users\Daniel\AppData\Roaming\TSv\TSvr.exe [359696 2016-04-15] (tsvr.com)
R2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2016-03-07] () [Arquivo não assinado]
R2 LkCitadelServer; C:\Windows\SysWOW64\lkcitdl.exe [695136 2014-08-07] (National Instruments, Inc.)
R2 lkClassAds; C:\Windows\SysWOW64\lkads.exe [53544 2015-06-01] (National Instruments Corporation)
R2 lkTimeSync; C:\Windows\SysWOW64\lktsrv.exe [63792 2015-06-01] (National Instruments Corporation)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Arquivo não assinado]
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [57184 2015-06-03] (National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [80736 2015-06-03] (National Instruments Corporation)
R2 niauth; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [571712 2015-06-02] (National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [399152 2015-06-01] (National Instruments Corporation)
S3 NILM License Manager; C:\Program Files (x86)\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1427688 2010-08-02] (Macrovision Corporation)
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [320368 2014-06-06] (National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [177536 2014-06-19] (National Instruments Corporation)
R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [89928 2015-06-02] (National Instruments Corporation)
R2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [57168 2015-06-03] (National Instruments Corporation)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Arquivo não assinado]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [904928 2015-11-04] (GAS Tecnologia LTDA)
R2 WdMan; C:\ProgramData\cwinpc\WFini.exe [569344 2016-04-15] (WFini LIMITED) [Arquivo não assinado]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
S2 Winsere; C:\Program Files (x86)\Winsere\Winsere\Winsere.exe [316984 2016-03-23] ()
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.1.6.0\WsAppService.exe [388608 2016-01-28] (Wondershare) [Arquivo não assinado]
S3 WsDrvInst; C:\Users\Daniel\Wondershare\MobileGo\DriverInstall.exe [124168 2016-01-19] (Wondershare)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R1 asfilterdrv; C:\Windows\System32\drivers\asfilterdrv.sys [57656 2015-08-12] (Windows (R) Win 7 DDK provider)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2016-01-19] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2016-01-19] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2016-01-19] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2016-01-19] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1065720 2016-03-02] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [464256 2016-01-20] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2016-01-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2016-01-19] (AVAST Software)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2016-04-26] (GAS Tecnologia)
R0 gbpddreg; C:\Windows\System32\drivers\gbpddreg64.sys [29816 2016-04-26] (GAS Tecnologia)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-09-22] (GAS Tecnologia)
R3 GigEVDrv; C:\Windows\System32\DRIVERS\GigEVDrv.sys [49744 2015-05-28] (Smartek d.o.o. (www.SMARTEKvision.com))
S3 iSafeKrnlBoot; C:\Windows\System32\DRIVERS\iSafeKrnlBoot.sys [55056 2015-08-19] (Elex do Brasil Participações Ltda)
R1 iSafeNetFilter; C:\Windows\System32\DRIVERS\iSafeNetFilter.sys [52392 2015-06-29] (Elex do Brasil Participações Ltda)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-09-22] (GAS Tecnologia LTDA)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-04-26] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-26 14:31 - 2016-04-26 14:32 - 00029551 _____ C:\Users\Daniel\Downloads\FRST.txt
2016-04-26 14:30 - 2016-04-26 14:31 - 00000000 ____D C:\FRST
2016-04-26 14:29 - 2016-04-26 14:29 - 02376192 _____ (Farbar) C:\Users\Daniel\Downloads\FRST64.exe
2016-04-26 14:14 - 2016-04-26 14:14 - 00001527 _____ C:\Users\Public\Desktop\Aplicativo da área de trabalho Autodesk.lnk
2016-04-26 14:08 - 2016-04-26 14:08 - 00002003 _____ C:\Users\Public\Desktop\A360 Desktop.lnk
2016-04-26 13:57 - 2016-04-26 13:57 - 00002075 _____ C:\Users\Public\Desktop\Autodesk ReCap 360.lnk
2016-04-26 13:40 - 2016-04-26 14:13 - 00000000 ____D C:\Program Files (x86)\Autodesk
2016-04-26 13:40 - 2016-04-26 13:40 - 00002100 _____ C:\Users\Public\Desktop\AutoCAD 2017 - Português - Brasil (Brazilian Portuguese).lnk
2016-04-26 13:39 - 2016-04-26 14:14 - 00000000 ____D C:\Users\Daniel\AppData\Local\Autodesk
2016-04-26 13:39 - 2016-04-26 13:39 - 00000000 ____D C:\Users\Public\Documents\Autodesk
2016-04-26 13:37 - 2016-04-26 13:37 - 00000000 ____D C:\Program Files\Common Files\Macrovision Shared
2016-04-26 13:28 - 2016-04-26 14:08 - 00000000 ____D C:\Program Files\Autodesk
2016-04-26 13:28 - 2016-04-26 13:38 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2016-04-26 13:04 - 2016-04-26 14:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2016-04-26 12:53 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-04-26 12:53 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-04-26 12:53 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-04-26 12:53 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-04-26 12:53 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-04-26 12:53 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-04-26 12:53 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-04-26 12:53 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-04-26 12:53 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-04-26 12:53 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-04-26 12:53 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-04-26 12:53 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-04-26 12:53 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-04-26 12:53 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-04-26 12:53 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-04-26 12:53 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-04-26 12:53 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-04-26 12:53 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-04-26 12:53 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-04-26 12:53 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-04-26 12:53 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-04-26 12:53 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-04-26 12:52 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-04-26 12:52 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-04-26 12:37 - 2016-04-26 14:14 - 00000000 ____D C:\Users\Todos os Usuários\Autodesk
2016-04-26 12:37 - 2016-04-26 14:14 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Autodesk
2016-04-26 12:37 - 2016-04-26 14:14 - 00000000 ____D C:\ProgramData\Autodesk
2016-04-26 12:29 - 2016-04-26 12:29 - 18685488 _____ C:\Users\Daniel\Downloads\AutoCAD_2017_Brazilian_Portuguese_Win_32_64bit_wi_pt-BR_Setup.exe
2016-04-26 12:28 - 2016-04-26 12:29 - 00338320 _____ (Autodesk Inc.) C:\Users\Daniel\Downloads\AutoCAD_2017_Brazilian_Portuguese_Win_32_64bit_wi_pt-BR_Setup_webinstall.exe
2016-04-26 12:12 - 2016-04-26 12:14 - 02996104 _____ C:\Users\Daniel\Desktop\Novo Documento 13.pdf
2016-04-26 12:11 - 2016-04-26 12:11 - 00000000 ____D C:\Users\Daniel\AppData\Local\Broadcom
2016-04-26 12:07 - 2016-04-26 12:07 - 00000000 ____D C:\Program Files\WIDCOMM
2016-04-26 12:07 - 2009-07-21 11:42 - 00132648 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2016-04-26 12:07 - 2009-07-21 11:42 - 00098344 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2016-04-26 12:07 - 2009-07-21 11:42 - 00035104 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys
2016-04-26 12:07 - 2009-07-21 11:42 - 00021160 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2016-04-25 22:21 - 2016-04-25 22:22 - 01092328 _____ (Dahapehenu ) C:\Users\Daniel\Downloads\autodesk-Volo-View-Express_30.exe
2016-04-25 21:30 - 2016-04-25 21:30 - 00000000 ____D C:\Users\Public\Documents\Guid
2016-04-25 16:35 - 2016-04-25 16:35 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\ControlCenter4
2016-04-25 16:14 - 2016-04-25 16:14 - 00000000 ___RD C:\Users\Daniel\AppData\Roaming\Brother
2016-04-25 16:14 - 2016-04-25 16:14 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Brother
2016-04-25 15:55 - 2016-04-25 15:55 - 00002944 _____ C:\Windows\BRPARAM.INI
2016-04-25 15:55 - 2016-04-25 15:55 - 00000261 _____ C:\Windows\Brpfx04a.ini
2016-04-25 15:55 - 2016-04-25 15:55 - 00000065 _____ C:\Windows\brpcfx.ini
2016-04-25 15:55 - 2016-04-25 15:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2016-04-25 15:52 - 2016-04-25 15:52 - 00000066 _____ C:\Windows\Brfaxrx.ini
2016-04-25 15:52 - 2016-04-25 15:52 - 00000000 ____D C:\Users\Todos os Usuários\ControlCenter4
2016-04-25 15:52 - 2016-04-25 15:52 - 00000000 ____D C:\Users\Public\Documents\BrFaxRx
2016-04-25 15:52 - 2016-04-25 15:52 - 00000000 ____D C:\ProgramData\ControlCenter4
2016-04-25 15:52 - 2016-04-25 15:52 - 00000000 ____D C:\Program Files (x86)\ControlCenter4
2016-04-25 15:52 - 2016-04-25 15:52 - 00000000 ____D C:\Program Files (x86)\Browny02
2016-04-25 15:52 - 2016-04-25 15:52 - 00000000 ____D C:\Brother
2016-04-25 15:52 - 2012-07-31 04:39 - 01439744 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrWi209d.dll
2016-04-25 15:52 - 2012-07-05 08:32 - 00084480 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrNetSti.dll
2016-04-25 15:52 - 2012-06-05 03:59 - 00025299 _____ (Brother Industries, Ltd) C:\Windows\SysWOW64\BRLM03A.DLL
2016-04-25 15:52 - 2012-03-19 01:09 - 00316928 _____ (brother) C:\Windows\system32\NSSRH64.dll
2016-04-25 15:52 - 2010-09-23 05:14 - 00058880 _____ (Brother Industries,Ltd.) C:\Windows\system32\BrWiaNCp.dll
2016-04-25 15:52 - 2010-09-23 05:13 - 00051712 _____ (Brother Industries,Ltd) C:\Windows\system32\Brnsplg.dll
2016-04-25 15:52 - 2010-05-20 02:33 - 00103792 _____ (Brother Industries Ltd) C:\Windows\SysWOW64\BRRBI100.EXE
2016-04-25 15:52 - 2010-04-01 07:27 - 00278528 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrJDec.dll
2016-04-25 15:52 - 2010-03-15 20:04 - 00143360 _____ C:\Windows\system32\BrSNMP64.dll
2016-04-25 15:52 - 2010-03-15 13:20 - 00050176 _____ (Brother Industries Ltd.) C:\Windows\SysWOW64\BRPRTINK.DLL
2016-04-25 15:52 - 2010-02-04 23:42 - 00180224 _____ (Brother Industries, Ltd.) C:\Windows\SysWOW64\BROSNMP.DLL
2016-04-25 15:52 - 2009-12-08 16:19 - 00290304 ____N (Brother Industries, Ltd.) C:\Windows\system32\BrfxDA5c.dll
2016-04-25 15:52 - 2005-01-17 04:10 - 00045056 _____ C:\Windows\SysWOW64\BRTCPCON.DLL
2016-04-25 15:52 - 2004-08-09 04:00 - 00000114 _____ C:\Windows\SysWOW64\BRLMW03A.INI
2016-04-25 15:52 - 2004-08-09 03:42 - 00077824 _____ (Brother Industries, Ltd.) C:\Windows\SysWOW64\BRLMW03A.DLL
2016-04-25 15:52 - 2003-11-28 18:57 - 00000000 _____ C:\Windows\brdfxspd.dat
2016-04-25 15:51 - 2016-04-25 15:52 - 00000000 ____D C:\Program Files (x86)\Brother
2016-04-25 15:51 - 2012-09-10 16:31 - 00245760 ____N (brother) C:\Windows\SysWOW64\NSSearch.dll
2016-04-25 15:51 - 2012-07-09 17:19 - 00005120 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2S.dll
2016-04-25 15:51 - 2010-03-15 19:45 - 00073728 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2.dll
2016-04-25 15:51 - 2007-12-13 22:16 - 00005632 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2L.dll
2016-04-25 15:50 - 2016-04-25 15:55 - 00000000 ____D C:\Users\Todos os Usuários\Brother
2016-04-25 15:50 - 2016-04-25 15:55 - 00000000 ____D C:\ProgramData\Brother
2016-04-24 21:20 - 2016-04-24 21:20 - 00003106 _____ C:\Windows\System32\Tasks\{85E50CD4-C9BE-4A59-A756-D89BEB9B5013}
2016-04-23 09:36 - 2016-04-23 09:36 - 00000971 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-04-21 19:02 - 2016-04-24 22:27 - 00000000 ____D C:\Users\Daniel\.receitanet
2016-04-21 17:21 - 2016-04-21 17:21 - 00000000 ____D C:\Users\Daniel\AppData\Local\CEF
2016-04-21 17:18 - 2016-04-24 19:58 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-04-21 17:18 - 2016-04-21 17:18 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-04-21 17:14 - 2016-04-25 22:15 - 00000000 ____D C:\Arquivos de Programas RFB
2016-04-21 17:14 - 2016-04-25 22:14 - 00000000 ___HD C:\Program Files (x86)\InstallJammer Registry
2016-04-20 11:26 - 2016-04-23 09:37 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-04-20 08:43 - 2016-04-20 10:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Win7 MAC Address Changer
2016-04-20 08:43 - 2016-04-20 10:56 - 00000000 ____D C:\Program Files (x86)\Win7 MAC Address Changer
2016-04-18 09:49 - 2016-04-18 09:49 - 00000000 ____D C:\Windows\system32\log
2016-04-18 09:49 - 2016-04-18 09:49 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Elex-tech
2016-04-18 09:49 - 2016-04-18 09:49 - 00000000 ____D C:\Program Files (x86)\Elex-tech
2016-04-18 09:49 - 2015-08-19 04:02 - 00055056 _____ (Elex do Brasil Participações Ltda) C:\Windows\system32\Drivers\iSafeKrnlBoot.sys
2016-04-18 09:49 - 2015-06-29 23:50 - 00052392 _____ (Elex do Brasil Participações Ltda) C:\Windows\system32\Drivers\iSafeNetFilter.sys
2016-04-15 11:12 - 2016-04-15 11:13 - 00000000 ____D C:\Users\Daniel\Desktop\rda
2016-04-15 09:22 - 2016-04-26 14:21 - 00000001 _____ C:\Windows\SysWOW64\br.html
2016-04-15 09:21 - 2016-04-15 09:22 - 00000000 ____D C:\Users\Todos os Usuários\cwinpc
2016-04-15 09:21 - 2016-04-15 09:22 - 00000000 ____D C:\ProgramData\cwinpc
2016-04-15 09:21 - 2016-04-15 09:21 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\TSv
2016-04-14 13:32 - 2016-04-14 13:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostscript
2016-04-14 13:04 - 2016-04-14 13:04 - 00000000 ___RD C:\Users\Daniel\Dropbox
2016-04-14 10:46 - 2016-04-14 10:46 - 00000000 ____D C:\Program Files (x86)\MSCad PDF
2016-04-14 10:46 - 2008-07-19 17:26 - 00087040 _____ C:\Windows\system32\custmon64.dll
2016-04-14 10:40 - 2016-04-14 10:40 - 00000000 ____D C:\Users\Public\Documents\Sys
2016-04-14 10:04 - 2016-04-14 11:34 - 00000000 ___RD C:\Users\Daniel\Dropbox (Versão anterior)
2016-04-14 09:59 - 2016-04-14 09:59 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Dropbox
2016-04-14 09:51 - 2016-04-26 14:21 - 00001016 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-04-14 09:51 - 2016-04-26 13:56 - 00001020 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-04-14 09:51 - 2016-04-14 13:56 - 00000000 ____D C:\Users\Todos os Usuários\Dropbox
2016-04-14 09:51 - 2016-04-14 13:56 - 00000000 ____D C:\ProgramData\Dropbox
2016-04-14 09:51 - 2016-04-14 13:38 - 00000000 ____D C:\Users\Daniel\AppData\Local\Dropbox
2016-04-14 09:51 - 2016-04-14 13:16 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-04-14 09:51 - 2016-04-14 09:51 - 00004016 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2016-04-14 09:51 - 2016-04-14 09:51 - 00003764 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2016-04-14 09:32 - 2016-04-14 09:33 - 00000000 ____D C:\Users\Daniel\Desktop\sid
2016-04-13 10:42 - 2016-04-13 10:42 - 00016575 _____ C:\Users\Daniel\Desktop\Cópia de RETIFICADORES SEs.xlsx
2016-04-12 13:29 - 2016-04-13 16:28 - 00000000 ____D C:\Users\Daniel\Desktop\Ricardo
2016-04-11 16:26 - 2016-04-11 16:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fotosizer
2016-04-11 16:26 - 2016-04-11 16:26 - 00000000 ____D C:\Program Files (x86)\Fotosizer
2016-04-11 10:57 - 2016-04-11 10:57 - 00000028 _____ C:\Windows\SysWOW64\lbj.ini
2016-04-11 10:56 - 2016-04-11 10:56 - 00001024 _____ C:\Windows\SysWOW64\dwg2pdf_win.dat
2016-04-11 09:26 - 2016-04-11 09:26 - 00000000 _____ C:\Windows\invcol.tmp
2016-04-11 09:21 - 2016-04-11 09:21 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2016-04-11 08:45 - 2016-04-11 08:45 - 00000092 ____H C:\Users\Public\Documents\msdrls.dat
2016-03-24 09:28 - 2016-04-18 09:46 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\WinZiper
2016-03-24 09:28 - 2016-04-15 09:55 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\eCyber
2016-03-24 09:23 - 2016-04-15 13:13 - 00000000 ____D C:\Program Files (x86)\qksee
2016-03-24 09:23 - 2016-04-15 09:33 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\qksee
2016-03-24 09:17 - 2016-04-15 09:21 - 00015128 _____ C:\Windows\System32\Tasks\Browser Updater Task(Core)
2016-03-24 09:17 - 2016-03-24 09:17 - 00000000 ____D C:\Program Files (x86)\QQBrowser
2016-03-17 11:42 - 2016-04-05 21:35 - 00000000 ____D C:\Users\Daniel\Desktop\Sala da elétrica - Curso
2016-03-17 08:59 - 2016-03-17 08:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QElectroTech
2016-03-17 08:58 - 2016-03-17 08:59 - 00000000 ____D C:\Program Files (x86)\QElectroTech
2016-03-17 08:51 - 2016-03-22 09:51 - 00000000 ____D C:\Users\Daniel\Desktop\Elétrica
2016-03-11 12:09 - 2016-04-05 20:51 - 00000000 ____D C:\Users\Daniel\Desktop\Claudete
2016-03-11 09:25 - 2016-03-11 09:25 - 00000000 ____D C:\Users\Daniel\AppData\Local\HP
2016-03-11 09:21 - 2016-03-11 09:21 - 00003484 _____ C:\Windows\System32\Tasks\HPLJCustParticipation
2016-03-11 09:21 - 2016-03-11 09:21 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
2016-03-11 09:17 - 2016-03-11 09:17 - 00000000 ____D C:\HP_SI_965D0289-10E1-45ec-B11F-A60AC9AE8D4D
2016-03-10 15:15 - 2016-04-04 21:26 - 00000000 ____D C:\Users\Daniel\Desktop\celular
2016-03-10 10:10 - 2016-04-25 22:17 - 00000000 ____D C:\Users\Daniel\Desktop\OUTROS
2016-03-08 16:14 - 2016-03-08 16:14 - 00000000 ____D C:\Users\Daniel\Documents\National Instruments
2016-03-08 16:14 - 2016-03-08 16:14 - 00000000 ____D C:\Users\Daniel\Documents\LabVIEW Data
2016-03-08 16:13 - 2016-03-08 16:13 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\National Instruments
2016-03-07 15:38 - 2016-03-08 14:06 - 00003536 _____ C:\Windows\System32\Tasks\NIUpdateServiceCheckTask
2016-03-07 15:38 - 2016-03-08 14:06 - 00003244 _____ C:\Windows\System32\Tasks\NIUpdateServiceStartupTask
2016-03-07 15:38 - 2016-03-07 15:55 - 00000000 ____D C:\Users\Daniel\AppData\Local\National Instruments
2016-03-07 15:36 - 2016-03-08 08:42 - 00000000 ____D C:\Program Files (x86)\HI-TECH Software
2016-03-07 15:32 - 2016-03-07 15:32 - 00001148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NI Ultiboard 14.0.lnk
2016-03-07 15:32 - 2016-03-07 15:32 - 00001143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NI Multisim 14.0.lnk
2016-03-07 15:31 - 2016-03-07 15:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\National Instruments
2016-03-07 15:31 - 2016-03-07 15:31 - 00000000 ____D C:\Users\Public\Documents\National Instruments
2016-03-07 15:27 - 2016-03-07 15:27 - 00000000 ____D C:\Windows\SysWOW64\cvirte
2016-03-07 15:27 - 2016-03-07 15:27 - 00000000 ____D C:\Windows\system32\cvirte
2016-03-07 15:26 - 2016-03-07 15:26 - 00000000 ____D C:\Program Files\National Instruments
2016-03-07 15:25 - 2016-03-08 13:40 - 00000000 ____D C:\Program Files (x86)\National Instruments
2016-03-07 15:23 - 2016-03-07 17:19 - 00000000 ____D C:\Users\Todos os Usuários\National Instruments
2016-03-07 15:23 - 2016-03-07 17:19 - 00000000 ____D C:\ProgramData\National Instruments
2016-03-07 15:21 - 2016-03-07 15:21 - 00000000 ____D C:\National Instruments Downloads
2016-03-07 14:44 - 2016-03-07 14:44 - 00151552 _____ C:\Windows\KMService.exe
2016-03-07 14:44 - 2016-03-07 14:44 - 00008192 _____ C:\Windows\SysWOW64\srvany.exe
2016-02-24 16:59 - 2016-02-24 16:59 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\eTeks Sweet Home 3D
2016-02-24 15:53 - 2016-02-24 15:53 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\VariCAD-Viewer.en
2016-02-24 15:23 - 2016-04-21 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-02-24 15:23 - 2016-04-21 17:11 - 00000000 ____D C:\Program Files (x86)\Java
2016-02-24 15:23 - 2016-04-21 17:10 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-02-24 15:20 - 2016-02-24 15:20 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Sun
2016-02-24 15:20 - 2016-02-24 15:20 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Sun
2016-02-24 15:19 - 2016-04-21 17:12 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-02-24 15:19 - 2016-04-21 17:12 - 00000000 ____D C:\ProgramData\Oracle
2016-02-24 15:07 - 2016-02-24 15:07 - 00000000 ____D C:\Users\Daniel\AppData\LocalLow\Oracle
2016-02-23 13:13 - 2016-04-26 12:31 - 00000000 ____D C:\Users\Daniel\AppData\Local\Akamai
2016-02-23 13:12 - 2016-04-26 12:30 - 00000000 ____D C:\Autodesk
2016-02-19 14:25 - 2016-03-09 15:41 - 00000000 ____D C:\Users\Daniel\Desktop\TCC
2016-02-19 07:34 - 2016-02-19 07:34 - 02692304 _____ (Autodesk, Inc.) C:\Windows\system32\styleman.cpl
2016-02-19 07:33 - 2016-02-19 07:33 - 02692304 _____ (Autodesk, Inc.) C:\Windows\system32\plotman.cpl
2016-02-19 07:32 - 2016-02-19 07:32 - 00024784 _____ (Autodesk, Inc.) C:\Windows\system32\AcSignExtRes.dll
2016-02-15 19:25 - 2016-04-26 14:19 - 00101080 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2016-02-15 19:25 - 2016-02-15 19:26 - 00001024 _____ C:\.rnd
2016-02-15 19:25 - 2016-02-15 19:25 - 00000000 ___HD C:\Program Files (x86)\GAS Tecnologia
2016-02-15 19:25 - 2016-02-15 19:25 - 00000000 ___HD C:\Program Files (x86)\Diebold
2016-02-15 19:25 - 2016-02-15 19:25 - 00000000 ____D C:\Program Files\Diebold
2016-02-15 19:25 - 2015-03-18 11:23 - 00103640 ____N (GAS Tecnologia) C:\Windows\system32\Drivers\wsddpp.sys
2016-02-15 19:24 - 2016-04-26 14:21 - 00029816 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddreg64.sys
2016-02-15 19:24 - 2016-04-26 14:20 - 00028888 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddfac64.sys
2016-02-15 19:24 - 2016-02-15 19:24 - 00000000 ____D C:\Users\Todos os Usuários\GAS Tecnologia
2016-02-15 19:24 - 2016-02-15 19:24 - 00000000 ____D C:\ProgramData\GAS Tecnologia
2016-02-15 19:23 - 2016-04-26 14:20 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2016-02-15 19:23 - 2016-04-21 17:47 - 00000000 ____D C:\Users\Todos os Usuários\Temp
2016-02-15 19:23 - 2016-04-21 17:47 - 00000000 ____D C:\ProgramData\Temp
2016-02-15 19:23 - 2016-03-20 21:23 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-02-15 19:23 - 2016-03-20 21:23 - 00000000 ____D C:\ProgramData\GbPlugin
2016-02-07 01:58 - 2016-02-07 01:58 - 00440800 _____ (Autodesk, Inc.) C:\Windows\system32\AcSignOpt.exe
2016-02-07 01:58 - 2016-02-07 01:58 - 00053216 _____ (Autodesk, Inc.) C:\Windows\system32\AcSignIcon.dll
2016-02-07 01:58 - 2016-02-07 01:58 - 00040928 _____ (Autodesk, Inc.) C:\Windows\system32\AcSignExt.dll
2016-02-03 09:34 - 2016-03-11 10:08 - 00000000 ____D C:\Users\Daniel\Documents\FLUKE
2016-02-02 12:48 - 2016-02-02 13:00 - 00000000 ____D C:\Windows\system32\MRT
2016-02-02 12:48 - 2016-02-02 12:48 - 143671360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-02 12:22 - 2016-02-02 12:30 - 00000000 ____D C:\Users\Daniel\AppData\Local\Fluke
2016-02-02 12:22 - 2016-02-02 12:22 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Fluke
2016-02-02 12:22 - 2016-02-02 12:22 - 00000000 ____D C:\Program Files\DIFX
2016-02-02 12:19 - 2016-02-02 12:19 - 00000000 ____D C:\Users\Todos os Usuários\Fluke
2016-02-02 12:19 - 2016-02-02 12:19 - 00000000 ____D C:\ProgramData\Fluke
2016-02-02 12:18 - 2016-02-02 12:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fluke
2016-02-02 12:16 - 2016-02-02 12:16 - 00000000 ____D C:\Program Files (x86)\Fluke
2016-02-02 10:04 - 2016-04-21 17:11 - 00000000 ____D C:\Users\Daniel\.oracle_jre_usage
2016-02-02 10:04 - 2016-02-24 15:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eTeks Sweet Home 3D
2016-02-02 10:04 - 2016-02-24 15:05 - 00000000 ____D C:\Program Files\Sweet Home 3D
2016-02-01 15:31 - 2016-02-01 15:31 - 00000000 ____D C:\Users\Daniel\Documents\Wondershare
2016-02-01 15:29 - 2016-02-01 15:29 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2016-02-01 15:28 - 2016-02-01 15:28 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2016-02-01 15:28 - 2016-02-01 15:28 - 01002728 _____ (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller2.dll
2016-02-01 15:27 - 2016-02-01 15:27 - 00000000 ____D C:\Users\Todos os Usuários\wondershare
2016-02-01 15:27 - 2016-02-01 15:27 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\HMYGSetting
2016-02-01 15:27 - 2016-02-01 15:27 - 00000000 ____D C:\ProgramData\wondershare
2016-02-01 15:26 - 2016-02-01 15:34 - 00000000 ____D C:\Users\Daniel\.android
2016-02-01 15:26 - 2016-02-01 15:27 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Wondershare
2016-02-01 15:26 - 2016-02-01 15:26 - 00000000 ____D C:\Users\Daniel\Wondershare
2016-02-01 15:26 - 2016-02-01 15:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2016-02-01 15:26 - 2016-02-01 15:26 - 00000000 ____D C:\Program Files (x86)\Wondershare
2016-02-01 15:26 - 2016-01-19 16:15 - 00000232 _____ C:\Windows\SysWOW64\dllhost.exe.config
2016-02-01 15:17 - 2016-02-01 15:26 - 00000000 ____D C:\Users\Public\Documents\Wondershare
2016-01-31 00:31 - 2016-01-31 00:33 - 00000000 ____D C:\FFOutput
2016-01-30 20:31 - 2016-04-12 09:09 - 00002193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-01-30 19:56 - 2016-04-26 14:21 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-30 19:56 - 2016-04-26 14:01 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-30 19:56 - 2016-01-30 20:30 - 00000000 ____D C:\Program Files (x86)\Google
2016-01-30 19:56 - 2016-01-30 19:56 - 00004064 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-01-30 19:56 - 2016-01-30 19:56 - 00003812 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-01-30 19:39 - 2016-03-11 11:30 - 00000000 ___SD C:\Users\Daniel\AppData\LocalLow\Temp
2016-01-30 11:13 - 2016-04-15 13:13 - 00000000 ____D C:\Program Files (x86)\SearchesToYesbnd
2016-01-29 12:46 - 2016-04-18 09:23 - 00000000 ____D C:\Users\Daniel\Desktop\Inspeções padrão
2016-01-29 08:15 - 2016-01-29 08:15 - 00000041 _____ C:\Users\Daniel\AppData\Roaming\WB.CFG
2016-01-29 07:16 - 2016-03-24 09:20 - 00015160 _____ C:\Windows\System32\Tasks\WinTaske
2016-01-29 07:16 - 2015-08-12 10:12 - 00057656 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\asfilterdrv.sys
2016-01-29 07:15 - 2016-01-30 11:07 - 00000000 ____D C:\Users\Daniel\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-01-29 07:15 - 2016-01-29 07:16 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-01-29 07:15 - 2016-01-29 07:16 - 00000000 ____D C:\extensions
2016-01-29 07:15 - 2016-01-29 07:15 - 00000000 ____D C:\Users\Daniel\AppData\Local\Setup54783105
2016-01-29 07:15 - 2016-01-29 07:15 - 00000000 ____D C:\Program Files (x86)\WinTaske
2016-01-29 07:15 - 2016-01-29 07:15 - 00000000 ____D C:\Program Files (x86)\Winsere
2016-01-29 07:14 - 2016-01-29 08:15 - 00000000 ____D C:\Users\Daniel\AppData\Local\{F802CE5E-DCAA-A2E6-B132-870E955A7B96}
2016-01-29 07:14 - 2016-01-29 07:15 - 00000000 ____D C:\Users\Daniel\AppData\Local\feli
2016-01-29 07:14 - 2016-01-29 07:14 - 00000372 __RSH C:\Users\Todos os Usuários\ntuser.pol
2016-01-29 07:14 - 2016-01-29 07:14 - 00000372 __RSH C:\ProgramData\ntuser.pol
2016-01-28 10:41 - 2016-04-12 10:36 - 00000000 ____D C:\Users\Daniel\AppData\Local\ElevatedDiagnostics

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-26 14:29 - 2009-07-14 01:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-26 14:29 - 2009-07-14 01:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-26 14:24 - 2009-07-29 13:08 - 00708172 _____ C:\Windows\system32\prfh0416.dat
2016-04-26 14:24 - 2009-07-29 13:08 - 00147952 _____ C:\Windows\system32\prfc0416.dat
2016-04-26 14:24 - 2009-07-14 02:13 - 01641362 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-26 14:24 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-04-26 14:23 - 2016-01-19 11:09 - 00142776 _____ C:\Users\Daniel\AppData\Local\GDIPFONTCACHEV1.DAT
2016-04-26 14:18 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-26 14:17 - 2009-07-14 01:45 - 00487592 _____ C:\Windows\system32\FNTCACHE.DAT
2016-04-26 14:13 - 2016-01-21 08:57 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-26 13:36 - 2009-07-14 02:32 - 00000000 ____D C:\Windows\Downloaded Program Files
2016-04-26 12:50 - 2016-01-25 07:08 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-04-26 12:50 - 2016-01-25 07:08 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-26 12:14 - 2016-01-20 07:38 - 00000000 ____D C:\Users\Daniel\Documents\Pasta de trocas do Bluetooth
2016-04-26 12:06 - 2016-01-19 14:35 - 01651180 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-04-25 21:53 - 2016-01-19 13:17 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-04-25 16:42 - 2016-01-19 16:11 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Skype
2016-04-25 15:51 - 2016-01-19 14:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-04-24 19:58 - 2016-01-20 08:08 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-04-23 09:13 - 2016-01-21 07:19 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\TeamViewer
2016-04-21 19:02 - 2016-01-19 10:33 - 00000000 ____D C:\Users\Daniel
2016-04-21 17:21 - 2016-01-21 08:10 - 00000000 ____D C:\Users\Daniel\AppData\Local\Adobe
2016-04-21 17:18 - 2016-01-20 07:41 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2016-04-21 17:18 - 2016-01-20 07:41 - 00000000 ____D C:\ProgramData\Adobe
2016-04-20 11:27 - 2016-01-21 07:27 - 00000000 ____D C:\Users\Daniel\AppData\Local\TeamViewer
2016-04-14 10:43 - 2016-01-21 08:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Adobe
2016-04-14 10:02 - 2016-01-19 14:38 - 03060705 ____H C:\Users\Daniel\AppData\Local\IconCache.db.backup
2016-04-11 16:35 - 2016-01-21 08:13 - 00000000 ____D C:\Users\Daniel\AppData\Local\Windows Live
2016-04-11 15:31 - 2016-01-19 10:34 - 00000000 ____D C:\Users\Daniel\AppData\Local\VirtualStore
2016-04-11 09:21 - 2016-01-19 11:09 - 00000000 ____D C:\Users\Daniel\AppData\Local\Deployment

==================== Arquivos na raiz de alguns diretórios =======

2016-01-29 08:15 - 2016-01-29 08:15 - 0000041 _____ () C:\Users\Daniel\AppData\Roaming\WB.CFG

Alguns arquivos em TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\4nzghxlm.dll
C:\Users\Daniel\AppData\Local\Temp\AcDeltree.exe
C:\Users\Daniel\AppData\Local\Temp\com.eteks.sweethome3d.SweetHome3D-cache-2312288-1455739953-j3dcore-d3d.dll
C:\Users\Daniel\AppData\Local\Temp\com.eteks.sweethome3d.SweetHome3D-cache-2312288-1455739953-j3dcore-ogl-cg.dll
C:\Users\Daniel\AppData\Local\Temp\com.eteks.sweethome3d.SweetHome3D-cache-2312288-1455739953-j3dcore-ogl-chk.dll
C:\Users\Daniel\AppData\Local\Temp\com.eteks.sweethome3d.SweetHome3D-cache-2312288-1455739953-j3dcore-ogl.dll
C:\Users\Daniel\AppData\Local\Temp\cwause1u.dll
C:\Users\Daniel\AppData\Local\Temp\extension4923808171092116315.dll
C:\Users\Daniel\AppData\Local\Temp\extension7411198792214767792.dll
C:\Users\Daniel\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\Daniel\AppData\Local\Temp\Setup.exe
C:\Users\Daniel\AppData\Local\Temp\sqlite3.dll
C:\Users\Daniel\AppData\Local\Temp\xtdngkp4.dll


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-04-18 14:39

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité