Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:27-04-2016
Executado por Otavio (administrador) em OTAVIO-PC (27-04-2016 20:06:46)
Executando a partir de C:\Users\Otavio\Desktop
Perfis Carregados: Otavio (Perfis Disponíveis: Otavio)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUSTek Computer Inc\Disk Unlocker\ASPFSVS64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\AsusFanControlService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\sqlservr.exe
(Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Yahoo Inc.) C:\Program Files (x86)\Yahoo!\yset\{2AFF4373-BB18-8F45-A0A9-04ECEF17D477}\YSearchUtilSVC.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe
() C:\Program Files (x86)\Legendas-3.5\srvlegendas.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DTAgent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Spotify Ltd) C:\Users\Otavio\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Valve Corporation) D:\Steam\Steam.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [904928 2015-11-04] (GAS Tecnologia LTDA)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [5006536 2016-03-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation)
HKLM-x32\...\Run: [ASUS Media Streamer ShareEdit] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ShareEdit.exe
HKLM-x32\...\Run: [ASUS Media Streamer DMS] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe
HKLM-x32\...\Run: [ASUS Media Streamer WSAgent] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [917112 2015-10-08] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318248 2016-01-08] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2016-04-05] (LogMeIn Inc.)
HKLM-x32\...\Run: [DLLSuite2016] => C:\Program Files (x86)\DLL Suite\DLLSuite.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [71440 2016-04-05] (Plays.tv, LLC)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-04-27] (Raptr, Inc)
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2015-10-20] (Banco do Brasil)
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-09-22] (Caixa Economica Federal)
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [4526424 2015-08-06] (Disc Soft Ltd)
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [787592 2015-10-22] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [KiesPDLR.exe] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1021736 2016-01-08] (Samsung)
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [Spotify Web Helper] => C:\Users\Otavio\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1525360 2016-04-21] (Spotify Ltd)
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\MountPoints2: {2cc4f2c7-9bf7-11e5-a8ea-0862663769b2} - F:\AUTORUN.EXE
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll [1945472 2015-10-20] (Banco do Brasil)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1888480 2015-09-22] (Caixa Economica Federal)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.25.1
Tcpip\..\Interfaces\{366751BB-AA63-4822-872D-7F60BE21B5B8}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{366751BB-AA63-4822-872D-7F60BE21B5B8}: [DhcpNameServer] 192.168.25.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130847057259101576&GUID=00000000-0000-0000-0000-000000000000
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130847057259101576&GUID=00000000-0000-0000-0000-000000000000
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=dspp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=dspp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hppp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hppp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=dspp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=dspp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&q={searchTerms}
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hppp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> DefaultScope {82279F45-11DD-4B74-ACA1-19E1AF01472E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=slbnew&utm_campaign=install_ie&utm_content=ds&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&ts=1436504656&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=slbnew&utm_campaign=install_ie&utm_content=ds&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&ts=1436504656&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=slbnew&utm_campaign=install_ie&utm_content=ds&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&ts=1436504656&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {8190B709-BE16-4D65-BC95-450E7EF87083} URL = hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {82279F45-11DD-4B74-ACA1-19E1AF01472E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=slbnew&utm_campaign=install_ie&utm_content=ds&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&ts=1436504656&type=default&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-27] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll [2015-10-20] (Banco do Brasil)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-09-22] (Caixa Economica Federal)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-27] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.mystartsearch.com/?type=sc&ts=1436504620&z=d43c5b52f3bf342627d0df8gcz3c6q2weebz4qbe1m&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED
FireFox:
========
FF ProfilePath: C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default
FF NewTab: chrome://quick_start/content/index.html
FF DefaultSearchEngine: mystartsearch
FF SelectedSearchEngine: mystartsearch
FF Homepage: hxxps://br.yahoo.com/?type=orcl_hpset
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-06-02] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-06-02] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-27] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\user.js [2016-02-16]
FF SearchPlugin: C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\searchplugins\mystartsearch.xml [2016-04-01]
FF SearchPlugin: C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\searchplugins\yahoo-ysp.xml [2016-01-24]
FF Extension: FirefixTab - C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\Extensions\deskCutv2@gmail.com [2016-03-31] [não assinado]
FF Extension: New Tab by Yahoo - C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\Extensions\jid1-G80Ec8LLEbK5fQ@jetpack.xpi [2016-03-27] [não assinado]
FF Extension: YahooToolsProtected - C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\Extensions\yahooprotected@gmail.com.xpi [2016-03-31] [não assinado]
FF Extension: New Tab by Yahoo - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\jid1-G80Ec8LLEbK5fQ@jetpack.xpi [2016-01-06]
FF HKLM-x32\...\Firefox\Extensions: [searchffv2@gmail.com] - C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\extensions\searchffv2@gmail.com => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [sweetsearch@gmail.com] - C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\extensions\sweetsearch@gmail.com => não encontrado (a)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com.br/
CHR StartupUrls: Default -> "hxxp://www.google.com.br/"
CHR DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://br.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Session Restore: Default -> está habilitado.
CHR Profile: C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-09]
CHR Extension: (Google Docs) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-09]
CHR Extension: (Google Drive) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-10]
CHR Extension: (Google Search) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Yahoo Web) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedgghdcpmmmilkmfpnklknlenbiolec [2015-12-16]
CHR Extension: (Planilhas do Google) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-09]
CHR Extension: (Documentos Google off-line) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (AdBlock) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-04-16]
CHR Extension: (Skype) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-04-27]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (GBBD Caixa Economica Federal) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbcaplhfkihhldmlbjhgajdeghjdbffi [2015-07-15]
CHR Extension: (Gmail) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-15]
CHR HKLM-x32\...\Chrome\Extension: [eedgghdcpmmmilkmfpnklknlenbiolec] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-03-21] (Advanced Micro Devices) [Arquivo não assinado]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-04-24] ()
R2 ASDiskUnlocker; C:\Program Files (x86)\ASUSTek Computer Inc\Disk Unlocker\ASPFSVS64.exe [262816 2012-06-18] (ASUSTeK Computer Inc.)
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2014-04-24] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] () [Arquivo não assinado]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\AsusFanControlService.exe [389944 2014-05-10] (ASUSTeK Computer Inc.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-10-08] (BlueStack Systems, Inc.)
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417400 2015-10-08] (BlueStack Systems, Inc.)
S3 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [855672 2015-10-08] (BlueStack Systems, Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 COMLegService; C:\Program Files (x86)\Legendas-3.5\srvlegendas.exe [1862896 2015-12-30] ()
R3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [1345880 2015-08-06] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [237328 2016-04-27] (EasyAntiCheat Ltd)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [593120 2015-09-22] (GAS Tecnologia)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2016-04-05] (LogMeIn, Inc.)
R2 MSSQL$ASUSHOMECLOUD; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\sqlservr.exe [43128496 2014-07-10] (Microsoft Corporation)
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-04-05] (Plays.tv, LLC)
S2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [177800 2015-10-22] (Sandboxie Holdings, LLC)
S4 SQLAgent$ASUSHOMECLOUD; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\SQLAGENT.EXE [381104 2014-07-10] (Microsoft Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado]
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [904928 2015-11-04] (GAS Tecnologia LTDA)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{2AFF4373-BB18-8F45-A0A9-04ECEF17D477}\YSearchUtilSvc.exe [160536 2016-01-11] (Yahoo Inc.)
S3 NMIndexingService; "C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe" [X]
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [296648 2016-03-21] (Advanced Micro Devices)
R3 ASFLTDrv.sys; C:\Program Files (x86)\ASUSTek Computer Inc\Disk Unlocker\ASFLTDrv64.sys [16512 2010-09-16] (ASUSTeK Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
S3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [146040 2015-10-08] (BlueStack Systems)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-06-28] (Disc Soft Ltd)
R3 dtultrascsibus; C:\Windows\System32\DRIVERS\dtultrascsibus.sys [30264 2015-12-06] (Disc Soft Ltd)
R3 dtultrausbbus; C:\Windows\System32\DRIVERS\dtultrausbbus.sys [47160 2015-12-06] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [487704 2014-03-14] (Intel Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2016-04-27] (GAS Tecnologia)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-08-12] (GAS Tecnologia)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-05-28] (Intel Corporation)
R1 legendasdrv; C:\Windows\System32\drivers\legendasdrv.sys [57584 2015-12-04] (GT)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
S3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [192648 2015-10-22] (Sandboxie Holdings, LLC) [Arquivo não assinado]
S3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [6144 2012-12-19] ()
R1 VDiskBus; C:\Windows\System32\DRIVERS\VDiskBus64.sys [42656 2012-06-01] (ASUSTeK Computer Inc.)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-08-12] (GAS Tecnologia LTDA)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R2 WinisoCDBus; C:\Windows\System32\drivers\WinisoCDBus.sys [204032 2014-02-26] (WinISO.com)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-04-27] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-04-27 20:06 - 2016-04-27 20:07 - 00031927 _____ C:\Users\Otavio\Desktop\FRST.txt
2016-04-27 19:47 - 2016-04-27 19:47 - 02376704 _____ (Farbar) C:\Users\Otavio\Desktop\FRST64.exe
2016-04-27 18:42 - 2016-04-27 18:42 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-04-27 18:28 - 2016-04-27 19:01 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\PlaysTV
2016-04-27 18:28 - 2016-04-27 18:28 - 00001979 _____ C:\Users\Public\Desktop\Raptr.lnk
2016-04-27 18:28 - 2016-04-27 18:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Raptr
2016-04-27 18:28 - 2016-04-27 18:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-04-27 18:27 - 2016-04-27 19:01 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Raptr
2016-04-27 18:27 - 2016-04-27 18:27 - 00000000 ____D C:\Program Files (x86)\Raptr Inc
2016-04-27 18:27 - 2016-04-27 18:27 - 00000000 ____D C:\Program Files (x86)\Raptr
2016-04-27 18:26 - 2016-04-27 18:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.1
2016-04-27 18:26 - 2016-04-27 18:26 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-04-27 18:26 - 2016-04-27 18:26 - 00000000 ____D C:\Program Files (x86)\AMD
2016-04-27 18:26 - 2016-02-15 20:27 - 00125720 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-04-27 18:26 - 2016-02-15 20:26 - 00126232 _____ C:\Windows\system32\vulkan-1.dll
2016-04-27 18:26 - 2016-02-15 20:25 - 00045848 _____ C:\Windows\system32\vulkaninfo.exe
2016-04-27 18:26 - 2016-02-15 20:25 - 00042264 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 03966848 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00398336 _____ (Microsoft Corporation) C:\Windows\system32\regedit.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PushPrinterConnections.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\PushPrinterConnections.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\setup16.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\perfhost.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\setupSNK.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\user.exe
2016-04-27 17:49 - 2016-04-27 17:49 - 03223152 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dgl.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 02616320 _____ (Microsoft Corporation) C:\Windows\system32\explorer.exe
2016-04-27 17:49 - 2016-04-27 17:49 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 01047552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71u.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDistSh.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pmcsnap.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00606208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstime.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrptadm.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SrpUxNativeSnapIn.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ppcsnap.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00219248 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dum.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuditNativeSnapIn.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDist.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscobj.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpolmsg.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00079232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvgumd32.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00063088 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuditPolicyGPInterop.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00053360 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLib.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00050800 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmhgfs.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00034416 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLibJava.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\dplaysvr.exe
2016-04-27 17:49 - 2016-04-27 17:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2016-04-27 17:49 - 2016-04-27 17:49 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\corpol.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\hh.exe
2016-04-27 17:49 - 2016-04-27 17:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\instnm.exe
2016-04-27 17:48 - 2016-04-27 17:48 - 03223152 _____ (VMware, Inc.) C:\Windows\system32\vm3dgl.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\msvbvm60.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\mswdat10.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSh.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\msrepl40.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00629760 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00618496 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00606208 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\msxbde40.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00438272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AdmTmpl.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00348160 _____ (Microsoft Corporation) C:\Windows\system32\msvcr71.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\SrpUxNativeSnapIn.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\mstext40.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt20.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00219248 _____ (VMware, Inc.) C:\Windows\system32\vm3dum.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00203264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppIdPolicyEngineApi.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00180800 _____ (Microsoft Corporation) C:\Windows\system32\sqlunirl.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00177856 _____ (Microsoft Corporation) C:\Windows\system32\typelib.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00169520 _____ (Microsoft Corporation) C:\Windows\system32\ole2disp.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00153008 _____ (Microsoft Corporation) C:\Windows\system32\ole2nls.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00149504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgmts.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\PeerDist.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\olecli32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00079232 _____ (Microsoft Corporation) C:\Windows\system32\rdvgumd32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\olethk32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00063088 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt40.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00053360 _____ (VMware, Inc.) C:\Windows\system32\vmGuestLib.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00050800 _____ (VMware, Inc.) C:\Windows\system32\vmhgfs.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00049179 _____ (Microsoft Corporation) C:\Windows\system32\sqlwoa.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00042592 _____ (Microsoft Corporation) C:\Windows\system32\ole2.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00034416 _____ (VMware, Inc.) C:\Windows\system32\vmGuestLibJava.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00030749 _____ (Microsoft Corporation) C:\Windows\system32\vbajet32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\olesvr32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\mtxlegih.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00024603 _____ (Microsoft Corporation) C:\Windows\system32\sqlwid.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\odbcji32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020535 _____ (Microsoft Corporation) C:\Windows\system32\vfpodbc.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\odtext32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\odpdx32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\odfox32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\odexl32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\oddbse32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\vdmdbg.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wow32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00004208 _____ (Microsoft Corporation) C:\Windows\system32\storage.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 01589248 _____ (Microsoft Corporation) C:\Windows\system32\msjet40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 01060864 _____ (Microsoft Corporation) C:\Windows\system32\mfc71.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 01047552 _____ (Microsoft Corporation) C:\Windows\system32\mfc71u.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\d3dim700.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00746496 _____ (Intel Corporation) C:\Windows\system32\ir50_32.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\d3dramp.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\FXSXP32.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\msexch40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00380957 _____ (Microsoft Corporation) C:\Windows\system32\expsrv.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\mspbde40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00364544 _____ C:\Windows\system32\msjetoledb40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\msjtes40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\msltus40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\dplayx.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00200192 _____ (Intel Corporation.) C:\Windows\system32\ir50_qcx.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00200192 _____ (Intel Corporation.) C:\Windows\system32\ir50_qc.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00197632 _____ C:\Windows\system32\ir32_32.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dmime.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00120320 _____ (Intel Corporation.) C:\Windows\system32\ir41_qcx.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00120320 _____ (Intel Corporation.) C:\Windows\system32\ir41_qc.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\dmstyle.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\dmscript.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00082944 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\dmcompos.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\msjter40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\d3dxof.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dpwsockx.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\FXSEXT32.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\dmband.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mscpxl32.dLL
2016-04-27 17:47 - 2016-04-27 17:47 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpmodemx.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\msorc32r.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\mscpx32r.dLL
2016-04-27 17:47 - 2016-04-27 17:47 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\iprop.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 01036800 _____ (Microsoft Corporation) C:\Windows\system32\d3d8.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00438272 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00386048 _____ (Microsoft Corporation) C:\Windows\system32\d3dim.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\audiodev.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\AuditNativeSnapIn.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\AppIdPolicyEngineApi.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\appmgmts.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00149019 _____ (Microsoft Corporation) C:\Windows\system32\crtdll.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\cscobj.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\auditpolmsg.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\AuditPolicyGPInterop.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00027792 _____ (Microsoft Corporation) C:\Windows\system32\compobj.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\ctl3d32.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\corpol.dll
2016-04-27 17:38 - 2016-04-27 18:11 - 00000000 ____D C:\Program Files (x86)\DLL Suite
2016-04-27 17:05 - 2016-04-27 20:06 - 00000000 ____D C:\FRST
2016-04-27 16:30 - 2016-04-27 16:20 - 00237328 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe
2016-04-20 07:17 - 2016-04-20 08:49 - 00003320 _____ C:\Windows\System32\Tasks\CorelUpdateHelperTaskCore
2016-04-20 07:16 - 2016-04-20 07:16 - 00000000 ____D C:\Program Files\Common Files\Corel
2016-04-20 07:14 - 2016-04-20 11:56 - 00000000 ____D C:\Program Files\Corel
2016-04-20 06:46 - 2016-04-20 06:46 - 00000000 ____D C:\Users\Todos os Usuários\UniqueId
2016-04-20 06:46 - 2016-04-20 06:46 - 00000000 ____D C:\ProgramData\UniqueId
2016-04-19 12:28 - 2016-04-19 12:28 - 00000000 ____D C:\Program Files (x86)\gs
2016-04-16 18:48 - 2016-04-18 14:53 - 00000000 ____D C:\Users\Otavio\AppData\Local\Warframe
2016-04-12 21:29 - 2016-04-12 21:29 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\com.freakinware.mitosis
2016-04-08 20:52 - 2016-04-08 20:52 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Carbon
2016-04-06 18:09 - 2016-04-06 18:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-04-06 18:09 - 2016-04-06 18:09 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-04-04 15:40 - 2016-04-04 15:40 - 00277296 _____ C:\Windows\Minidump\040416-17316-01.dmp
2016-04-02 18:16 - 2016-04-03 17:19 - 00000000 ____D C:\Program Files (x86)\WTFast
2016-04-01 02:07 - 2016-04-19 12:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-31 15:19 - 2016-03-31 15:19 - 00000000 ____D C:\Users\Otavio\AppData\Local\Victory
2016-03-31 15:19 - 2016-03-31 15:19 - 00000000 ____D C:\Users\Otavio\AppData\Local\UnrealEngine
2016-03-25 11:31 - 2016-04-05 16:18 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2016-03-21 11:45 - 2016-03-21 11:45 - 00141792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00128384 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00110880 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00102616 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-03-21 11:39 - 2016-03-21 11:39 - 00296648 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2016-03-21 11:36 - 2016-03-21 11:36 - 26345472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-03-21 11:29 - 2016-03-21 11:29 - 06956032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll
2016-03-21 11:28 - 2016-03-21 11:28 - 48212992 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2016-03-21 11:28 - 2016-03-21 11:28 - 00235008 _____ C:\Windows\system32\clinfo.exe
2016-03-21 11:27 - 2016-03-21 11:27 - 40126976 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-03-21 11:26 - 2016-03-21 11:26 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-03-21 11:26 - 2016-03-21 11:26 - 00059392 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-03-21 11:25 - 2016-03-21 11:25 - 05420032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll
2016-03-21 11:24 - 2016-03-21 11:24 - 26887168 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2016-03-21 11:24 - 2016-03-21 11:24 - 21730304 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-03-21 11:02 - 2016-03-21 11:02 - 00701440 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2016-03-21 11:02 - 2016-03-21 11:02 - 00580096 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2016-03-21 11:01 - 2016-03-21 11:01 - 30377984 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-03-21 11:01 - 2016-03-21 11:01 - 06884864 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2016-03-21 11:01 - 2016-03-21 11:01 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2016-03-21 11:01 - 2016-03-21 11:01 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2016-03-21 10:59 - 2016-03-21 10:59 - 00865280 _____ (AMD) C:\Windows\system32\coinst_16.15.dll
2016-03-21 10:57 - 2016-03-21 10:57 - 05398016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2016-03-21 10:57 - 2016-03-21 10:57 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2016-03-21 10:57 - 2016-03-21 10:57 - 00039424 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2016-03-21 10:55 - 2016-03-21 10:55 - 25069056 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-03-21 10:55 - 2016-03-21 10:55 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2016-03-21 10:54 - 2016-03-21 10:54 - 00697792 _____ C:\Windows\SysWOW64\atiapfxx.blb
2016-03-21 10:54 - 2016-03-21 10:54 - 00697792 _____ C:\Windows\system32\atiapfxx.blb
2016-03-21 10:54 - 2016-03-21 10:54 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-03-21 10:54 - 2016-03-21 10:54 - 00097280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2016-03-21 10:54 - 2016-03-21 10:54 - 00089600 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2016-03-21 10:54 - 2016-03-21 10:54 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-03-21 10:54 - 2016-03-21 10:54 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-03-21 10:54 - 2016-03-21 10:54 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-03-21 10:54 - 2016-03-21 10:54 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-03-21 10:53 - 2016-03-21 10:53 - 15711744 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-03-21 10:53 - 2016-03-21 10:53 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-03-21 10:50 - 2016-03-21 10:50 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-03-21 10:49 - 2016-03-21 10:49 - 00564736 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-03-21 10:49 - 2016-03-21 10:49 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00251392 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-03-21 10:49 - 2016-03-21 10:49 - 00224256 _____ C:\Windows\system32\dgtrayicon.exe
2016-03-21 10:49 - 2016-03-21 10:49 - 00209920 _____ C:\Windows\system32\GameManager64.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00204800 _____ C:\Windows\system32\amdgfxinfo64.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00189952 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00186368 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00162304 _____ C:\Windows\system32\atieah64.exe
2016-03-21 10:49 - 2016-03-21 10:49 - 00145408 _____ C:\Windows\SysWOW64\atieah32.exe
2016-03-21 10:49 - 2016-03-21 10:49 - 00078336 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-03-21 10:46 - 2016-03-21 10:46 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2016-03-21 10:46 - 2016-03-21 10:46 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00944640 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00944640 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00676864 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-03-21 10:45 - 2016-03-21 10:45 - 00157696 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00142336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00075776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00070144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00070144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-03-21 10:44 - 2016-03-21 10:44 - 00195072 _____ C:\Windows\system32\hsa-thunk64.dll
2016-03-21 10:44 - 2016-03-21 10:44 - 00174592 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2016-03-21 09:58 - 2016-03-21 09:58 - 02412544 _____ C:\Windows\system32\amdacpusl.pdb
2016-03-21 09:55 - 2016-03-21 09:55 - 00364544 _____ (Advanced Micro Devices) C:\Windows\system32\amdacpusl.dll
2016-03-21 09:55 - 2016-03-21 09:55 - 00306176 _____ C:\Windows\system32\amdacpusl.pdb.pub
2016-03-21 09:55 - 2016-03-21 09:55 - 00248832 _____ (Advanced Micro Devices) C:\Windows\SysWOW64\amdacpusl.dll
2016-03-16 07:49 - 2016-03-16 07:49 - 00857576 _____ C:\Windows\system32\amdicdxx.dat
2016-03-01 14:11 - 2016-03-01 14:11 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-03-01 00:06 - 2016-03-16 15:27 - 00000000 ____D C:\Users\Otavio\Desktop\Tor Browser
2016-02-26 02:18 - 2016-02-29 23:55 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\mute.fm
2016-02-26 02:18 - 2016-02-29 23:55 - 00000000 ____D C:\Program Files (x86)\mute.fm
2016-02-24 04:58 - 2016-02-24 04:58 - 00096256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2016-02-24 04:57 - 2016-02-24 04:57 - 00103424 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2016-02-22 21:09 - 2016-02-22 21:09 - 00000000 ____D C:\Users\Otavio\AppData\Local\4kdownload.com
2016-02-22 21:09 - 2016-02-22 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
2016-02-22 21:09 - 2016-02-22 21:09 - 00000000 ____D C:\Program Files (x86)\4KDownload
2016-02-21 22:07 - 2016-02-21 23:44 - 02600359 _____ C:\Users\Otavio\Desktop\Holerite.cdr
2016-02-21 22:07 - 2016-02-21 22:18 - 02600057 _____ C:\Users\Otavio\Desktop\Cópia_de_segurança_de_Holerite.cdr
2016-02-20 04:00 - 2016-02-20 04:00 - 00000000 ____D C:\Program Files\SAMSUNG
2016-02-19 11:56 - 2016-04-27 17:47 - 00000000 ____D C:\Users\Otavio\AppData\Local\Spotify
2016-02-19 11:56 - 2016-02-19 11:56 - 00001758 _____ C:\Users\Otavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-02-19 11:54 - 2016-04-27 17:50 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Spotify
2016-02-16 14:37 - 2016-04-27 17:33 - 00000000 ____D C:\Users\Todos os Usuários\Temp
2016-02-16 14:37 - 2016-04-27 17:33 - 00000000 ____D C:\ProgramData\Temp
2016-02-15 20:27 - 2016-02-15 20:27 - 00125720 _____ C:\Windows\SysWOW64\vulkan-1-1-0-3-1.dll
2016-02-15 20:26 - 2016-02-15 20:26 - 00126232 _____ C:\Windows\system32\vulkan-1-1-0-3-1.dll
2016-02-15 20:25 - 2016-02-15 20:25 - 00045848 _____ C:\Windows\system32\vulkaninfo-1-1-0-3-1.exe
2016-02-15 20:25 - 2016-02-15 20:25 - 00042264 _____ C:\Windows\SysWOW64\vulkaninfo-1-1-0-3-1.exe
2016-02-01 15:52 - 2016-02-01 15:52 - 00254804 _____ C:\Windows\system32\ativvaxy_FJ.dat
2016-02-01 15:51 - 2016-02-01 15:51 - 00251856 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat
2016-02-01 15:49 - 2016-02-01 15:49 - 00322612 _____ C:\Windows\system32\ativvaxy_vi.dat
2016-02-01 15:48 - 2016-02-01 15:48 - 00320944 _____ C:\Windows\system32\ativvaxy_vi_nd.dat
2016-02-01 15:46 - 2016-02-01 15:46 - 00264736 _____ C:\Windows\system32\ativvaxy_stn_nd.dat
2016-02-01 15:44 - 2016-02-01 15:44 - 00260640 _____ C:\Windows\system32\ativvaxy_cz_nd.dat
2016-01-29 18:02 - 2016-01-29 18:02 - 00175584 _____ C:\Windows\system32\amde31a.dat
2016-01-29 04:53 - 2016-01-29 04:53 - 01691248 _____ C:\Windows\Minidump\012916-13759-01.dmp
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-04-27 20:06 - 2009-07-14 01:45 - 00029216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-27 20:06 - 2009-07-14 01:45 - 00029216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-27 19:51 - 2015-06-01 17:13 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-04-27 19:51 - 2015-06-01 17:13 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-27 19:28 - 2015-07-15 02:39 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-27 19:01 - 2011-04-12 10:40 - 00775592 _____ C:\Windows\system32\prfh0416.dat
2016-04-27 19:01 - 2011-04-12 10:40 - 00174200 _____ C:\Windows\system32\prfc0416.dat
2016-04-27 19:01 - 2009-07-14 02:13 - 01832982 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-27 19:01 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-04-27 18:59 - 2016-01-10 22:54 - 00000000 ____D C:\Users\Otavio\AppData\Local\LogMeIn Hamachi
2016-04-27 18:59 - 2015-07-15 02:39 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-27 18:55 - 2015-11-19 01:19 - 00101080 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2016-04-27 18:55 - 2015-10-16 16:19 - 00002898 _____ C:\Windows\System32\Tasks\AutoKMS
2016-04-27 18:55 - 2015-09-23 16:25 - 00028888 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddfac64.sys
2016-04-27 18:55 - 2015-09-23 16:25 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2016-04-27 18:55 - 2015-06-02 11:45 - 00000268 _____ C:\Windows\Tasks\AutoKMS.job
2016-04-27 18:54 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-27 18:49 - 2015-06-01 17:18 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-04-27 18:33 - 2015-12-06 05:55 - 00004230 _____ C:\Windows\System32\Tasks\AMD Updater
2016-04-27 18:26 - 2015-12-05 18:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-04-27 18:26 - 2015-06-01 17:13 - 00000000 ____D C:\Program Files\AMD
2016-04-27 18:17 - 2015-06-09 14:14 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\uTorrent
2016-04-27 18:17 - 2015-06-02 11:21 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-04-27 18:17 - 2015-06-02 11:21 - 00000000 ____D C:\ProgramData\Oracle
2016-04-27 18:16 - 2015-12-15 12:20 - 00000000 ____D C:\Users\Otavio\.oracle_jre_usage
2016-04-27 18:16 - 2015-06-02 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-27 18:16 - 2015-06-02 11:21 - 00000000 ____D C:\Program Files (x86)\Java
2016-04-27 18:15 - 2015-06-02 11:21 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-04-27 18:09 - 2015-09-23 16:25 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-04-27 18:09 - 2015-09-23 16:25 - 00000000 ____D C:\ProgramData\GbPlugin
2016-04-27 13:48 - 2015-12-10 11:01 - 00003950 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{68A0D584-31F6-43AB-AE25-AFFBFDA74CD3}
2016-04-27 11:52 - 2015-06-02 11:28 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Skype
2016-04-27 02:00 - 2015-06-01 23:31 - 00000000 ____D C:\Users\Otavio\AppData\Local\Adobe
2016-04-21 15:05 - 2010-11-21 00:27 - 00453288 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-04-20 11:43 - 2015-06-16 19:32 - 00000000 ____D C:\Users\Todos os Usuários\Corel
2016-04-20 11:43 - 2015-06-16 19:32 - 00000000 ____D C:\ProgramData\Corel
2016-04-19 12:41 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF
2016-04-19 12:24 - 2015-06-11 03:16 - 00000000 ____D C:\Users\Otavio\AppData\Local\ElevatedDiagnostics
2016-04-19 12:18 - 2015-06-02 11:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-19 12:12 - 2015-06-01 17:14 - 01797368 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-04-11 22:31 - 2015-07-15 02:43 - 00002153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-07 17:44 - 2015-06-24 10:20 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\TS3Client
2016-04-04 15:40 - 2015-06-03 01:19 - 00000000 ____D C:\Windows\Minidump
2016-04-01 13:45 - 2015-12-08 04:58 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\vlc
==================== Arquivos na raiz de alguns diretórios =======
2015-08-08 19:04 - 2015-10-07 14:14 - 0000132 _____ () C:\Users\Otavio\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2015-09-28 07:50 - 2015-09-28 08:19 - 0001456 _____ () C:\Users\Otavio\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2015-12-28 00:01 - 2015-12-28 00:01 - 0000040 _____ () C:\ProgramData\ra3.ini
2015-07-29 03:21 - 2015-07-29 03:21 - 1498288 _____ () C:\ProgramData\setup_f23e6d6f306942e684989de8177e183a.exe
Arquivos para serem movidos ou deletados:
====================
C:\ProgramData\setup_f23e6d6f306942e684989de8177e183a.exe
C:\Users\Todos os Usuários\setup_f23e6d6f306942e684989de8177e183a.exe
Alguns arquivos em TEMP:
====================
C:\Users\Otavio\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\Otavio\AppData\Local\Temp\playstv_patch.exe
C:\Users\Otavio\AppData\Local\Temp\raptrpatch.exe
C:\Users\Otavio\AppData\Local\Temp\raptr_stub.exe
C:\Users\Otavio\AppData\Local\Temp\temp~.DLL
C:\Users\Otavio\AppData\Local\Temp\temp~.EXE
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-04-18 00:40
==================== Fim de FRST.txt ============================
Executado por Otavio (administrador) em OTAVIO-PC (27-04-2016 20:06:46)
Executando a partir de C:\Users\Otavio\Desktop
Perfis Carregados: Otavio (Perfis Disponíveis: Otavio)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUSTek Computer Inc\Disk Unlocker\ASPFSVS64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\AsusFanControlService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\sqlservr.exe
(Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Yahoo Inc.) C:\Program Files (x86)\Yahoo!\yset\{2AFF4373-BB18-8F45-A0A9-04ECEF17D477}\YSearchUtilSVC.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\printfilterpipelinesvc.exe
() C:\Program Files (x86)\Legendas-3.5\srvlegendas.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DTAgent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Spotify Ltd) C:\Users\Otavio\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Valve Corporation) D:\Steam\Steam.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) D:\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Pixart Imaging Inc)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [904928 2015-11-04] (GAS Tecnologia LTDA)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [5006536 2016-03-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation)
HKLM-x32\...\Run: [ASUS Media Streamer ShareEdit] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ShareEdit.exe
HKLM-x32\...\Run: [ASUS Media Streamer DMS] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\DLNA\DMS\AODMS.exe
HKLM-x32\...\Run: [ASUS Media Streamer WSAgent] => C:\Program Files (x86)\ASUS\HomeCloud\Media Streamer\ASUS Media Streamer\ASUSWSAgent.exe
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [917112 2015-10-08] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318248 2016-01-08] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2016-04-05] (LogMeIn Inc.)
HKLM-x32\...\Run: [DLLSuite2016] => C:\Program Files (x86)\DLL Suite\DLLSuite.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [71440 2016-04-05] (Plays.tv, LLC)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-04-27] (Raptr, Inc)
Winlogon\Notify\ GbPluginBb: C:\Program Files (x86)\GbPlugin\gbieh.dll [2015-10-20] (Banco do Brasil)
Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-09-22] (Caixa Economica Federal)
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [4526424 2015-08-06] (Disc Soft Ltd)
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [787592 2015-10-22] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [KiesPDLR.exe] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1021736 2016-01-08] (Samsung)
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\Run: [Spotify Web Helper] => C:\Users\Otavio\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1525360 2016-04-21] (Spotify Ltd)
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\...\MountPoints2: {2cc4f2c7-9bf7-11e5-a8ea-0862663769b2} - F:\AUTORUN.EXE
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GbPlugin\gbieh.dll [1945472 2015-10-20] (Banco do Brasil)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1888480 2015-09-22] (Caixa Economica Federal)
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Tcpip\Parameters: [DhcpNameServer] 192.168.25.1
Tcpip\..\Interfaces\{366751BB-AA63-4822-872D-7F60BE21B5B8}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{366751BB-AA63-4822-872D-7F60BE21B5B8}: [DhcpNameServer] 192.168.25.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130847057259101576&GUID=00000000-0000-0000-0000-000000000000
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130847057259101576&GUID=00000000-0000-0000-0000-000000000000
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=dspp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=dspp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hppp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hppp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=dspp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=dspp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&q={searchTerms}
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://br.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
HKU\S-1-5-21-4289788358-470554532-1089532210-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.mystartsearch.com/?type=hppp&ts=1436504647&z=59052fd0c28a672c41ce4c5gaz8c6q4w3ecz2q7cam&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> DefaultScope {82279F45-11DD-4B74-ACA1-19E1AF01472E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=slbnew&utm_campaign=install_ie&utm_content=ds&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&ts=1436504656&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=slbnew&utm_campaign=install_ie&utm_content=ds&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&ts=1436504656&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=slbnew&utm_campaign=install_ie&utm_content=ds&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&ts=1436504656&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {8190B709-BE16-4D65-BC95-450E7EF87083} URL = hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {82279F45-11DD-4B74-ACA1-19E1AF01472E} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4289788358-470554532-1089532210-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=slbnew&utm_campaign=install_ie&utm_content=ds&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED&ts=1436504656&type=default&q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-27] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540000} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll [2015-10-20] (Banco do Brasil)
BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-09-22] (Caixa Economica Federal)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-27] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.mystartsearch.com/?type=sc&ts=1436504620&z=d43c5b52f3bf342627d0df8gcz3c6q2weebz4qbe1m&from=slbnew&uid=ST500DM002-1BD142_S2ACY7EDXXXXS2ACY7ED
FireFox:
========
FF ProfilePath: C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default
FF NewTab: chrome://quick_start/content/index.html
FF DefaultSearchEngine: mystartsearch
FF SelectedSearchEngine: mystartsearch
FF Homepage: hxxps://br.yahoo.com/?type=orcl_hpset
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-06-02] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-06-02] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-27] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\user.js [2016-02-16]
FF SearchPlugin: C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\searchplugins\mystartsearch.xml [2016-04-01]
FF SearchPlugin: C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\searchplugins\yahoo-ysp.xml [2016-01-24]
FF Extension: FirefixTab - C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\Extensions\deskCutv2@gmail.com [2016-03-31] [não assinado]
FF Extension: New Tab by Yahoo - C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\Extensions\jid1-G80Ec8LLEbK5fQ@jetpack.xpi [2016-03-27] [não assinado]
FF Extension: YahooToolsProtected - C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\Extensions\yahooprotected@gmail.com.xpi [2016-03-31] [não assinado]
FF Extension: New Tab by Yahoo - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\jid1-G80Ec8LLEbK5fQ@jetpack.xpi [2016-01-06]
FF HKLM-x32\...\Firefox\Extensions: [searchffv2@gmail.com] - C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\extensions\searchffv2@gmail.com => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [sweetsearch@gmail.com] - C:\Users\Otavio\AppData\Roaming\Mozilla\Firefox\Profiles\328l09tg.default\extensions\sweetsearch@gmail.com => não encontrado (a)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com.br/
CHR StartupUrls: Default -> "hxxp://www.google.com.br/"
CHR DefaultSearchURL: Default -> hxxps://br.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://br.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Session Restore: Default -> está habilitado.
CHR Profile: C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Apresentações) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-09]
CHR Extension: (Google Docs) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-09]
CHR Extension: (Google Drive) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-10]
CHR Extension: (Google Search) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Yahoo Web) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedgghdcpmmmilkmfpnklknlenbiolec [2015-12-16]
CHR Extension: (Planilhas do Google) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-09]
CHR Extension: (Documentos Google off-line) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (AdBlock) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-04-16]
CHR Extension: (Skype) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-04-27]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (GBBD Caixa Economica Federal) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbcaplhfkihhldmlbjhgajdeghjdbffi [2015-07-15]
CHR Extension: (Gmail) - C:\Users\Otavio\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-15]
CHR HKLM-x32\...\Chrome\Extension: [eedgghdcpmmmilkmfpnklknlenbiolec] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 amdacpusrsvc; C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe [121856 2016-03-21] (Advanced Micro Devices) [Arquivo não assinado]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2014-04-24] ()
R2 ASDiskUnlocker; C:\Program Files (x86)\ASUSTek Computer Inc\Disk Unlocker\ASPFSVS64.exe [262816 2012-06-18] (ASUSTeK Computer Inc.)
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2014-04-24] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2014-04-24] () [Arquivo não assinado]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.07\AsusFanControlService.exe [389944 2014-05-10] (ASUSTeK Computer Inc.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-10-08] (BlueStack Systems, Inc.)
S3 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [417400 2015-10-08] (BlueStack Systems, Inc.)
S3 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [855672 2015-10-08] (BlueStack Systems, Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 COMLegService; C:\Program Files (x86)\Legendas-3.5\srvlegendas.exe [1862896 2015-12-30] ()
R3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [1345880 2015-08-06] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [237328 2016-04-27] (EasyAntiCheat Ltd)
R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [593120 2015-09-22] (GAS Tecnologia)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2016-04-05] (LogMeIn, Inc.)
R2 MSSQL$ASUSHOMECLOUD; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\sqlservr.exe [43128496 2014-07-10] (Microsoft Corporation)
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-04-05] (Plays.tv, LLC)
S2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [177800 2015-10-22] (Sandboxie Holdings, LLC)
S4 SQLAgent$ASUSHOMECLOUD; C:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.ASUSHOMECLOUD\MSSQL\Binn\SQLAGENT.EXE [381104 2014-07-10] (Microsoft Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2015-05-21] (DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado]
R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [904928 2015-11-04] (GAS Tecnologia LTDA)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 YSearchUtilSvc; C:\Program Files (x86)\Yahoo!\yset\{2AFF4373-BB18-8F45-A0A9-04ECEF17D477}\YSearchUtilSvc.exe [160536 2016-01-11] (Yahoo Inc.)
S3 NMIndexingService; "C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe" [X]
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 AiCharger; C:\Windows\SysWow64\drivers\AiCharger.sys [14848 2012-03-22] (ASUSTek Computer Inc.)
R2 amdacpksd; C:\Windows\system32\drivers\amdacpksd.sys [296648 2016-03-21] (Advanced Micro Devices)
R3 ASFLTDrv.sys; C:\Program Files (x86)\ASUSTek Computer Inc\Disk Unlocker\ASFLTDrv64.sys [16512 2010-09-16] (ASUSTeK Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2014-01-28] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2014-02-24] ()
S3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [146040 2015-10-08] (BlueStack Systems)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-06-28] (Disc Soft Ltd)
R3 dtultrascsibus; C:\Windows\System32\DRIVERS\dtultrascsibus.sys [30264 2015-12-06] (Disc Soft Ltd)
R3 dtultrausbbus; C:\Windows\System32\DRIVERS\dtultrausbbus.sys [47160 2015-12-06] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [487704 2014-03-14] (Intel Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 gbpddfac; C:\Windows\System32\drivers\gbpddfac64.sys [28888 2016-04-27] (GAS Tecnologia)
R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-08-12] (GAS Tecnologia)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-05-28] (Intel Corporation)
R1 legendasdrv; C:\Windows\System32\drivers\legendasdrv.sys [57584 2015-12-04] (GT)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
S3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [192648 2015-10-22] (Sandboxie Holdings, LLC) [Arquivo não assinado]
S3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [6144 2012-12-19] ()
R1 VDiskBus; C:\Windows\System32\DRIVERS\VDiskBus64.sys [42656 2012-06-01] (ASUSTeK Computer Inc.)
R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2015-08-12] (GAS Tecnologia LTDA)
R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-07-07] (Basil)
R2 WinisoCDBus; C:\Windows\System32\drivers\WinisoCDBus.sys [204032 2014-02-26] (WinISO.com)
R1 wsddfac; C:\Windows\System32\drivers\wsddfac.sys [101080 2016-04-27] (GAS Tecnologia)
R1 wsddpp; C:\Windows\system32\drivers\wsddpp.sys [103640 2015-03-18] (GAS Tecnologia)
S0 gbpddreg; system32\drivers\gbpddreg64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-04-27 20:06 - 2016-04-27 20:07 - 00031927 _____ C:\Users\Otavio\Desktop\FRST.txt
2016-04-27 19:47 - 2016-04-27 19:47 - 02376704 _____ (Farbar) C:\Users\Otavio\Desktop\FRST64.exe
2016-04-27 18:42 - 2016-04-27 18:42 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-04-27 18:28 - 2016-04-27 19:01 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\PlaysTV
2016-04-27 18:28 - 2016-04-27 18:28 - 00001979 _____ C:\Users\Public\Desktop\Raptr.lnk
2016-04-27 18:28 - 2016-04-27 18:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Raptr
2016-04-27 18:28 - 2016-04-27 18:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-04-27 18:27 - 2016-04-27 19:01 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Raptr
2016-04-27 18:27 - 2016-04-27 18:27 - 00000000 ____D C:\Program Files (x86)\Raptr Inc
2016-04-27 18:27 - 2016-04-27 18:27 - 00000000 ____D C:\Program Files (x86)\Raptr
2016-04-27 18:26 - 2016-04-27 18:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.1
2016-04-27 18:26 - 2016-04-27 18:26 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-04-27 18:26 - 2016-04-27 18:26 - 00000000 ____D C:\Program Files (x86)\AMD
2016-04-27 18:26 - 2016-02-15 20:27 - 00125720 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-04-27 18:26 - 2016-02-15 20:26 - 00126232 _____ C:\Windows\system32\vulkan-1.dll
2016-04-27 18:26 - 2016-02-15 20:25 - 00045848 _____ C:\Windows\system32\vulkaninfo.exe
2016-04-27 18:26 - 2016-02-15 20:25 - 00042264 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 03966848 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00398336 _____ (Microsoft Corporation) C:\Windows\system32\regedit.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PushPrinterConnections.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\PushPrinterConnections.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\setup16.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\perfhost.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\setupSNK.exe
2016-04-27 17:50 - 2016-04-27 17:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\user.exe
2016-04-27 17:49 - 2016-04-27 17:49 - 03223152 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dgl.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 02616320 _____ (Microsoft Corporation) C:\Windows\system32\explorer.exe
2016-04-27 17:49 - 2016-04-27 17:49 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 01047552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71u.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDistSh.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pmcsnap.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00606208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstime.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrptadm.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SrpUxNativeSnapIn.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ppcsnap.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00219248 _____ (VMware, Inc.) C:\Windows\SysWOW64\vm3dum.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00217088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuditNativeSnapIn.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PeerDist.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscobj.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpolmsg.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00079232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvgumd32.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00063088 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuditPolicyGPInterop.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00053360 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLib.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00050800 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmhgfs.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00034416 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmGuestLibJava.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpscript.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\dplaysvr.exe
2016-04-27 17:49 - 2016-04-27 17:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.exe
2016-04-27 17:49 - 2016-04-27 17:49 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\corpol.dll
2016-04-27 17:49 - 2016-04-27 17:49 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\hh.exe
2016-04-27 17:49 - 2016-04-27 17:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\instnm.exe
2016-04-27 17:48 - 2016-04-27 17:48 - 03223152 _____ (VMware, Inc.) C:\Windows\system32\vm3dgl.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\msvbvm60.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\mswdat10.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\PeerDistSh.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\msrepl40.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00629760 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00618496 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00606208 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\msxbde40.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00438272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AdmTmpl.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00348160 _____ (Microsoft Corporation) C:\Windows\system32\msvcr71.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\SrpUxNativeSnapIn.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\mstext40.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt20.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\ppcsnap.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00219248 _____ (VMware, Inc.) C:\Windows\system32\vm3dum.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00203264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppIdPolicyEngineApi.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00180800 _____ (Microsoft Corporation) C:\Windows\system32\sqlunirl.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00177856 _____ (Microsoft Corporation) C:\Windows\system32\typelib.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00169520 _____ (Microsoft Corporation) C:\Windows\system32\ole2disp.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00153008 _____ (Microsoft Corporation) C:\Windows\system32\ole2nls.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00149504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgmts.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\PeerDist.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\olecli32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00079232 _____ (Microsoft Corporation) C:\Windows\system32\rdvgumd32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\olethk32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00063088 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt40.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00053360 _____ (VMware, Inc.) C:\Windows\system32\vmGuestLib.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00050800 _____ (VMware, Inc.) C:\Windows\system32\vmhgfs.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00049179 _____ (Microsoft Corporation) C:\Windows\system32\sqlwoa.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00042592 _____ (Microsoft Corporation) C:\Windows\system32\ole2.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00034416 _____ (VMware, Inc.) C:\Windows\system32\vmGuestLibJava.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00030749 _____ (Microsoft Corporation) C:\Windows\system32\vbajet32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\olesvr32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\mtxlegih.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00024603 _____ (Microsoft Corporation) C:\Windows\system32\sqlwid.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\odbcji32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020535 _____ (Microsoft Corporation) C:\Windows\system32\vfpodbc.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\odtext32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\odpdx32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\odfox32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\odexl32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\oddbse32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\vdmdbg.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wow32.dll
2016-04-27 17:48 - 2016-04-27 17:48 - 00004208 _____ (Microsoft Corporation) C:\Windows\system32\storage.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 01589248 _____ (Microsoft Corporation) C:\Windows\system32\msjet40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 01060864 _____ (Microsoft Corporation) C:\Windows\system32\mfc71.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 01047552 _____ (Microsoft Corporation) C:\Windows\system32\mfc71u.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\d3dim700.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00746496 _____ (Intel Corporation) C:\Windows\system32\ir50_32.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\d3dramp.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\FXSXP32.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\msexch40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00380957 _____ (Microsoft Corporation) C:\Windows\system32\expsrv.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\mspbde40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00364544 _____ C:\Windows\system32\msjetoledb40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\msjtes40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\msltus40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\dplayx.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00200192 _____ (Intel Corporation.) C:\Windows\system32\ir50_qcx.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00200192 _____ (Intel Corporation.) C:\Windows\system32\ir50_qc.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00197632 _____ C:\Windows\system32\ir32_32.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dmime.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00120320 _____ (Intel Corporation.) C:\Windows\system32\ir41_qcx.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00120320 _____ (Intel Corporation.) C:\Windows\system32\ir41_qc.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\dmstyle.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\dmscript.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00082944 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\dmcompos.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\msjter40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\d3dxof.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dpwsockx.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\FXSEXT32.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\dmband.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mscpxl32.dLL
2016-04-27 17:47 - 2016-04-27 17:47 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpmodemx.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\msorc32r.dll
2016-04-27 17:47 - 2016-04-27 17:47 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\mscpx32r.dLL
2016-04-27 17:47 - 2016-04-27 17:47 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\iprop.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 01036800 _____ (Microsoft Corporation) C:\Windows\system32\d3d8.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00438272 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00386048 _____ (Microsoft Corporation) C:\Windows\system32\d3dim.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\audiodev.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\AuditNativeSnapIn.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\AppIdPolicyEngineApi.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\appmgmts.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00149019 _____ (Microsoft Corporation) C:\Windows\system32\crtdll.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\cscobj.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\auditpolmsg.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\AuditPolicyGPInterop.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00027792 _____ (Microsoft Corporation) C:\Windows\system32\compobj.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\ctl3d32.dll
2016-04-27 17:46 - 2016-04-27 17:46 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\corpol.dll
2016-04-27 17:38 - 2016-04-27 18:11 - 00000000 ____D C:\Program Files (x86)\DLL Suite
2016-04-27 17:05 - 2016-04-27 20:06 - 00000000 ____D C:\FRST
2016-04-27 16:30 - 2016-04-27 16:20 - 00237328 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe
2016-04-20 07:17 - 2016-04-20 08:49 - 00003320 _____ C:\Windows\System32\Tasks\CorelUpdateHelperTaskCore
2016-04-20 07:16 - 2016-04-20 07:16 - 00000000 ____D C:\Program Files\Common Files\Corel
2016-04-20 07:14 - 2016-04-20 11:56 - 00000000 ____D C:\Program Files\Corel
2016-04-20 06:46 - 2016-04-20 06:46 - 00000000 ____D C:\Users\Todos os Usuários\UniqueId
2016-04-20 06:46 - 2016-04-20 06:46 - 00000000 ____D C:\ProgramData\UniqueId
2016-04-19 12:28 - 2016-04-19 12:28 - 00000000 ____D C:\Program Files (x86)\gs
2016-04-16 18:48 - 2016-04-18 14:53 - 00000000 ____D C:\Users\Otavio\AppData\Local\Warframe
2016-04-12 21:29 - 2016-04-12 21:29 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\com.freakinware.mitosis
2016-04-08 20:52 - 2016-04-08 20:52 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Carbon
2016-04-06 18:09 - 2016-04-06 18:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-04-06 18:09 - 2016-04-06 18:09 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-04-04 15:40 - 2016-04-04 15:40 - 00277296 _____ C:\Windows\Minidump\040416-17316-01.dmp
2016-04-02 18:16 - 2016-04-03 17:19 - 00000000 ____D C:\Program Files (x86)\WTFast
2016-04-01 02:07 - 2016-04-19 12:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-31 15:19 - 2016-03-31 15:19 - 00000000 ____D C:\Users\Otavio\AppData\Local\Victory
2016-03-31 15:19 - 2016-03-31 15:19 - 00000000 ____D C:\Users\Otavio\AppData\Local\UnrealEngine
2016-03-25 11:31 - 2016-04-05 16:18 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2016-03-21 11:45 - 2016-03-21 11:45 - 00141792 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00128384 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00110880 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00102616 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2016-03-21 11:45 - 2016-03-21 11:45 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2016-03-21 11:39 - 2016-03-21 11:39 - 00296648 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2016-03-21 11:36 - 2016-03-21 11:36 - 26345472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2016-03-21 11:29 - 2016-03-21 11:29 - 06956032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdvlk64.dll
2016-03-21 11:28 - 2016-03-21 11:28 - 48212992 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2016-03-21 11:28 - 2016-03-21 11:28 - 00235008 _____ C:\Windows\system32\clinfo.exe
2016-03-21 11:27 - 2016-03-21 11:27 - 40126976 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2016-03-21 11:26 - 2016-03-21 11:26 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-03-21 11:26 - 2016-03-21 11:26 - 00059392 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-03-21 11:25 - 2016-03-21 11:25 - 05420032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdvlk32.dll
2016-03-21 11:24 - 2016-03-21 11:24 - 26887168 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl12cl64.dll
2016-03-21 11:24 - 2016-03-21 11:24 - 21730304 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl12cl.dll
2016-03-21 11:02 - 2016-03-21 11:02 - 00701440 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2016-03-21 11:02 - 2016-03-21 11:02 - 00580096 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2016-03-21 11:01 - 2016-03-21 11:01 - 30377984 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2016-03-21 11:01 - 2016-03-21 11:01 - 06884864 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2016-03-21 11:01 - 2016-03-21 11:01 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2016-03-21 11:01 - 2016-03-21 11:01 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2016-03-21 10:59 - 2016-03-21 10:59 - 00865280 _____ (AMD) C:\Windows\system32\coinst_16.15.dll
2016-03-21 10:57 - 2016-03-21 10:57 - 05398016 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2016-03-21 10:57 - 2016-03-21 10:57 - 00050688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2016-03-21 10:57 - 2016-03-21 10:57 - 00039424 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2016-03-21 10:55 - 2016-03-21 10:55 - 25069056 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2016-03-21 10:55 - 2016-03-21 10:55 - 03437632 _____ C:\Windows\system32\atiumd6a.cap
2016-03-21 10:54 - 2016-03-21 10:54 - 00697792 _____ C:\Windows\SysWOW64\atiapfxx.blb
2016-03-21 10:54 - 2016-03-21 10:54 - 00697792 _____ C:\Windows\system32\atiapfxx.blb
2016-03-21 10:54 - 2016-03-21 10:54 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2016-03-21 10:54 - 2016-03-21 10:54 - 00097280 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2016-03-21 10:54 - 2016-03-21 10:54 - 00089600 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2016-03-21 10:54 - 2016-03-21 10:54 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2016-03-21 10:54 - 2016-03-21 10:54 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2016-03-21 10:54 - 2016-03-21 10:54 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2016-03-21 10:54 - 2016-03-21 10:54 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2016-03-21 10:53 - 2016-03-21 10:53 - 15711744 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2016-03-21 10:53 - 2016-03-21 10:53 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2016-03-21 10:50 - 2016-03-21 10:50 - 03471376 _____ C:\Windows\SysWOW64\atiumdva.cap
2016-03-21 10:49 - 2016-03-21 10:49 - 00564736 _____ (AMD) C:\Windows\system32\atieclxx.exe
2016-03-21 10:49 - 2016-03-21 10:49 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00251392 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2016-03-21 10:49 - 2016-03-21 10:49 - 00224256 _____ C:\Windows\system32\dgtrayicon.exe
2016-03-21 10:49 - 2016-03-21 10:49 - 00209920 _____ C:\Windows\system32\GameManager64.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00204800 _____ C:\Windows\system32\amdgfxinfo64.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00189952 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00186368 _____ C:\Windows\SysWOW64\GameManager32.dll
2016-03-21 10:49 - 2016-03-21 10:49 - 00162304 _____ C:\Windows\system32\atieah64.exe
2016-03-21 10:49 - 2016-03-21 10:49 - 00145408 _____ C:\Windows\SysWOW64\atieah32.exe
2016-03-21 10:49 - 2016-03-21 10:49 - 00078336 _____ (AMD) C:\Windows\system32\atimuixx.dll
2016-03-21 10:46 - 2016-03-21 10:46 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2016-03-21 10:46 - 2016-03-21 10:46 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00944640 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00944640 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00676864 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2016-03-21 10:45 - 2016-03-21 10:45 - 00157696 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00142336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00075776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00070144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00070144 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2016-03-21 10:45 - 2016-03-21 10:45 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2016-03-21 10:44 - 2016-03-21 10:44 - 00195072 _____ C:\Windows\system32\hsa-thunk64.dll
2016-03-21 10:44 - 2016-03-21 10:44 - 00174592 _____ C:\Windows\SysWOW64\hsa-thunk.dll
2016-03-21 09:58 - 2016-03-21 09:58 - 02412544 _____ C:\Windows\system32\amdacpusl.pdb
2016-03-21 09:55 - 2016-03-21 09:55 - 00364544 _____ (Advanced Micro Devices) C:\Windows\system32\amdacpusl.dll
2016-03-21 09:55 - 2016-03-21 09:55 - 00306176 _____ C:\Windows\system32\amdacpusl.pdb.pub
2016-03-21 09:55 - 2016-03-21 09:55 - 00248832 _____ (Advanced Micro Devices) C:\Windows\SysWOW64\amdacpusl.dll
2016-03-16 07:49 - 2016-03-16 07:49 - 00857576 _____ C:\Windows\system32\amdicdxx.dat
2016-03-01 14:11 - 2016-03-01 14:11 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-03-01 00:06 - 2016-03-16 15:27 - 00000000 ____D C:\Users\Otavio\Desktop\Tor Browser
2016-02-26 02:18 - 2016-02-29 23:55 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\mute.fm
2016-02-26 02:18 - 2016-02-29 23:55 - 00000000 ____D C:\Program Files (x86)\mute.fm
2016-02-24 04:58 - 2016-02-24 04:58 - 00096256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW76.sys
2016-02-24 04:57 - 2016-02-24 04:57 - 00103424 _____ (Advanced Micro Devices) C:\Windows\system32\DelayAPO.dll
2016-02-22 21:09 - 2016-02-22 21:09 - 00000000 ____D C:\Users\Otavio\AppData\Local\4kdownload.com
2016-02-22 21:09 - 2016-02-22 21:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
2016-02-22 21:09 - 2016-02-22 21:09 - 00000000 ____D C:\Program Files (x86)\4KDownload
2016-02-21 22:07 - 2016-02-21 23:44 - 02600359 _____ C:\Users\Otavio\Desktop\Holerite.cdr
2016-02-21 22:07 - 2016-02-21 22:18 - 02600057 _____ C:\Users\Otavio\Desktop\Cópia_de_segurança_de_Holerite.cdr
2016-02-20 04:00 - 2016-02-20 04:00 - 00000000 ____D C:\Program Files\SAMSUNG
2016-02-19 11:56 - 2016-04-27 17:47 - 00000000 ____D C:\Users\Otavio\AppData\Local\Spotify
2016-02-19 11:56 - 2016-02-19 11:56 - 00001758 _____ C:\Users\Otavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-02-19 11:54 - 2016-04-27 17:50 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Spotify
2016-02-16 14:37 - 2016-04-27 17:33 - 00000000 ____D C:\Users\Todos os Usuários\Temp
2016-02-16 14:37 - 2016-04-27 17:33 - 00000000 ____D C:\ProgramData\Temp
2016-02-15 20:27 - 2016-02-15 20:27 - 00125720 _____ C:\Windows\SysWOW64\vulkan-1-1-0-3-1.dll
2016-02-15 20:26 - 2016-02-15 20:26 - 00126232 _____ C:\Windows\system32\vulkan-1-1-0-3-1.dll
2016-02-15 20:25 - 2016-02-15 20:25 - 00045848 _____ C:\Windows\system32\vulkaninfo-1-1-0-3-1.exe
2016-02-15 20:25 - 2016-02-15 20:25 - 00042264 _____ C:\Windows\SysWOW64\vulkaninfo-1-1-0-3-1.exe
2016-02-01 15:52 - 2016-02-01 15:52 - 00254804 _____ C:\Windows\system32\ativvaxy_FJ.dat
2016-02-01 15:51 - 2016-02-01 15:51 - 00251856 _____ C:\Windows\system32\ativvaxy_FJ_nd.dat
2016-02-01 15:49 - 2016-02-01 15:49 - 00322612 _____ C:\Windows\system32\ativvaxy_vi.dat
2016-02-01 15:48 - 2016-02-01 15:48 - 00320944 _____ C:\Windows\system32\ativvaxy_vi_nd.dat
2016-02-01 15:46 - 2016-02-01 15:46 - 00264736 _____ C:\Windows\system32\ativvaxy_stn_nd.dat
2016-02-01 15:44 - 2016-02-01 15:44 - 00260640 _____ C:\Windows\system32\ativvaxy_cz_nd.dat
2016-01-29 18:02 - 2016-01-29 18:02 - 00175584 _____ C:\Windows\system32\amde31a.dat
2016-01-29 04:53 - 2016-01-29 04:53 - 01691248 _____ C:\Windows\Minidump\012916-13759-01.dmp
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2016-04-27 20:06 - 2009-07-14 01:45 - 00029216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-27 20:06 - 2009-07-14 01:45 - 00029216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-27 19:51 - 2015-06-01 17:13 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-04-27 19:51 - 2015-06-01 17:13 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-27 19:28 - 2015-07-15 02:39 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-27 19:01 - 2011-04-12 10:40 - 00775592 _____ C:\Windows\system32\prfh0416.dat
2016-04-27 19:01 - 2011-04-12 10:40 - 00174200 _____ C:\Windows\system32\prfc0416.dat
2016-04-27 19:01 - 2009-07-14 02:13 - 01832982 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-27 19:01 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\inf
2016-04-27 18:59 - 2016-01-10 22:54 - 00000000 ____D C:\Users\Otavio\AppData\Local\LogMeIn Hamachi
2016-04-27 18:59 - 2015-07-15 02:39 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-27 18:55 - 2015-11-19 01:19 - 00101080 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\wsddfac.sys
2016-04-27 18:55 - 2015-10-16 16:19 - 00002898 _____ C:\Windows\System32\Tasks\AutoKMS
2016-04-27 18:55 - 2015-09-23 16:25 - 00028888 _____ (GAS Tecnologia) C:\Windows\system32\Drivers\gbpddfac64.sys
2016-04-27 18:55 - 2015-09-23 16:25 - 00000000 ____D C:\Program Files (x86)\GbPlugin
2016-04-27 18:55 - 2015-06-02 11:45 - 00000268 _____ C:\Windows\Tasks\AutoKMS.job
2016-04-27 18:54 - 2009-07-14 02:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-27 18:49 - 2015-06-01 17:18 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-04-27 18:33 - 2015-12-06 05:55 - 00004230 _____ C:\Windows\System32\Tasks\AMD Updater
2016-04-27 18:26 - 2015-12-05 18:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2016-04-27 18:26 - 2015-06-01 17:13 - 00000000 ____D C:\Program Files\AMD
2016-04-27 18:17 - 2015-06-09 14:14 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\uTorrent
2016-04-27 18:17 - 2015-06-02 11:21 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2016-04-27 18:17 - 2015-06-02 11:21 - 00000000 ____D C:\ProgramData\Oracle
2016-04-27 18:16 - 2015-12-15 12:20 - 00000000 ____D C:\Users\Otavio\.oracle_jre_usage
2016-04-27 18:16 - 2015-06-02 11:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-27 18:16 - 2015-06-02 11:21 - 00000000 ____D C:\Program Files (x86)\Java
2016-04-27 18:15 - 2015-06-02 11:21 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-04-27 18:09 - 2015-09-23 16:25 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-04-27 18:09 - 2015-09-23 16:25 - 00000000 ____D C:\ProgramData\GbPlugin
2016-04-27 13:48 - 2015-12-10 11:01 - 00003950 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{68A0D584-31F6-43AB-AE25-AFFBFDA74CD3}
2016-04-27 11:52 - 2015-06-02 11:28 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\Skype
2016-04-27 02:00 - 2015-06-01 23:31 - 00000000 ____D C:\Users\Otavio\AppData\Local\Adobe
2016-04-21 15:05 - 2010-11-21 00:27 - 00453288 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-04-20 11:43 - 2015-06-16 19:32 - 00000000 ____D C:\Users\Todos os Usuários\Corel
2016-04-20 11:43 - 2015-06-16 19:32 - 00000000 ____D C:\ProgramData\Corel
2016-04-19 12:41 - 2009-07-14 00:20 - 00000000 ____D C:\Windows\system32\NDF
2016-04-19 12:24 - 2015-06-11 03:16 - 00000000 ____D C:\Users\Otavio\AppData\Local\ElevatedDiagnostics
2016-04-19 12:18 - 2015-06-02 11:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-19 12:12 - 2015-06-01 17:14 - 01797368 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-04-11 22:31 - 2015-07-15 02:43 - 00002153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-07 17:44 - 2015-06-24 10:20 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\TS3Client
2016-04-04 15:40 - 2015-06-03 01:19 - 00000000 ____D C:\Windows\Minidump
2016-04-01 13:45 - 2015-12-08 04:58 - 00000000 ____D C:\Users\Otavio\AppData\Roaming\vlc
==================== Arquivos na raiz de alguns diretórios =======
2015-08-08 19:04 - 2015-10-07 14:14 - 0000132 _____ () C:\Users\Otavio\AppData\Roaming\Preferências do Formato PNG do Adobe CS6
2015-09-28 07:50 - 2015-09-28 08:19 - 0001456 _____ () C:\Users\Otavio\AppData\Local\Adobe Salvar para Web 13.0 Prefs
2015-12-28 00:01 - 2015-12-28 00:01 - 0000040 _____ () C:\ProgramData\ra3.ini
2015-07-29 03:21 - 2015-07-29 03:21 - 1498288 _____ () C:\ProgramData\setup_f23e6d6f306942e684989de8177e183a.exe
Arquivos para serem movidos ou deletados:
====================
C:\ProgramData\setup_f23e6d6f306942e684989de8177e183a.exe
C:\Users\Todos os Usuários\setup_f23e6d6f306942e684989de8177e183a.exe
Alguns arquivos em TEMP:
====================
C:\Users\Otavio\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\Otavio\AppData\Local\Temp\playstv_patch.exe
C:\Users\Otavio\AppData\Local\Temp\raptrpatch.exe
C:\Users\Otavio\AppData\Local\Temp\raptr_stub.exe
C:\Users\Otavio\AppData\Local\Temp\temp~.DLL
C:\Users\Otavio\AppData\Local\Temp\temp~.EXE
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2016-04-18 00:40
==================== Fim de FRST.txt ============================