cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:27-04-2016
Executado por Administrador (administrador) em CRISTO-PC (29-04-2016 18:48:57)
Executando a partir de C:\Users\Administrador\Downloads
Perfis Carregados: Administrador (Perfis Disponíveis: lálálálá & Administrador & Convidado)
Platform: Microsoft Windows 7 Ultimate (X86) Idioma: Português (Brasil)
Internet Explorer Versão 8 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(Razer Inc.) C:\Program Files\Razer\Razer Game Booster\RzKLService.exe
(Google Inc.) C:\Users\lálálálá\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\lálálálá\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\lálálálá\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\lálálálá\AppData\Local\Google\Chrome\Application\chrome.exe
(Piotr Pawlowski) D:\foobar2000\foobar2000.exe
(Google Inc.) C:\Users\lálálálá\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\lálálálá\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\lálálálá\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [RazerGameBooster] => C:\Program Files\Razer\Razer Game Booster\RazerGameBooster.exe [61152 2014-02-25] (Razer Inc.)
HKLM\...\Winlogon: [Userinit] c:\windows\system32\userinit.exe,,c:\program files\microsoft\desktoplayer.exe
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKLM\...\Policies\Explorer: [NoNetworkConnections] 0
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\system: [NoDispSettingsPage] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\system: [NoDispScrSavPage] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\system: [NoDispBackgroundPage] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\system: [NoDispAppearancePage] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\system: [NoVisualStyleChoice] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\system: [NoColorChoice] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\system: [NoSizeChoice] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoDeletePrinter] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoThemesTab] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoChangeAnimation] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoViewContextMenu] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoDFSTab] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoSecurityTab] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoHardwareTab] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoToolbarCustomize] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoBandCustomize] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoFileMenu] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoSetFolders] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoStartMenuMyGames] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoCommonGroups] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoStartMenuNetworkPlaces] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoToolbarsOnTaskbar] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\Policies\Explorer: [NoSimpleStartMenu] 0
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\MountPoints2: H - H:\autorun.exe
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\MountPoints2: {51b3f949-c4ed-11e4-bb8a-806e6f6e6963} - E:\Msetup4.exe
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\MountPoints2: {7c6f3140-ce5c-11e4-ad81-eca86bb453bf} - G:\FileRgn.exe
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\MountPoints2: {aec7d446-d573-11e4-bf92-eca86bb453bf} - J:\setup.exe
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\MountPoints2: {aec7d45c-d573-11e4-bf92-eca86bb453bf} - autorun.bat
HKU\S-1-5-21-281890263-1598800038-2911800294-500\...\MountPoints2: {f654bda6-8874-11e5-b646-005056c00008} - G:\FileRgn.exe
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

ProxyEnable: [.DEFAULT] => Proxy está habilitado.
ProxyServer: [.DEFAULT] => http=127.0.0.1:53472;https=127.0.0.1:53472;
AutoConfigURL: [.DEFAULT] => http=127.0.0.1:53472;https=127.0.0.1:53472;
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [147456 2008-12-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.20
Tcpip\..\Interfaces\{7486D020-265F-4F4F-9659-1F32379CF42B}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{8A70BFCA-078E-4DAC-99C7-F1930445D4CE}: [DhcpNameServer] 192.168.1.20
Tcpip\..\Interfaces\{CDDABDD6-7755-4727-BF91-97A349E8DF67}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\S-1-5-21-281890263-1598800038-2911800294-500\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_60-windows-i586.cab
DPF: {CAFEEFAC-0018-0000-0060-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_60-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_60-windows-i586.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll Nenhum Arquivo

FireFox:
========
FF ProfilePath: C:\Users\Administrador\AppData\Roaming\Mozilla\Firefox\Profiles\sp1hp6d9.default
FF Plugin: @adobe.com/AuthorwarePlayer -> C:\Windows\system32\Macromed\AUTHORWA\np32asw.dll [2004-07-02] (Macromedia, Inc.)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_286.dll [2016-01-26] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1214154.dll [2014-11-07] (Adobe Systems, Inc.)
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Nenhum Arquivo]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Nenhum Arquivo]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [Nenhum Arquivo]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @nexon.com/NxGame -> C:\ProgramData\Nexon\NGM\npnxgame.dll [Nenhum Arquivo]
FF Plugin: @raidcall.en/RCplugin -> C:\Users\lálálálá\AppData\Roaming\raidcall\plugins\nprcplugin.dll [2016-03-26] (Raidcall)
FF Plugin: @raidcall.tw/RCplugin -> C:\Users\cristo\AppData\Roaming\RCTW\plugins\nprcplugin.dll [Nenhum Arquivo]
FF Plugin: @t.garena.com/garenatalk -> C:\Program Files\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll [Nenhum Arquivo]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-25] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-25] (Google Inc.)
FF Plugin HKU\S-1-5-21-281890263-1598800038-2911800294-500: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Administrador\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [Nenhum Arquivo]

Chrome:
=======
CHR HomePage: Default -> hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_bxi01_15_43¶m1=1¶m2=f%3D1%26b%3DChrome%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0E0C0AzzyC0B0ByEyDtA0B0Fzy0AtA0DtN0D0Tzu0StCtAzytCtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2StAyB0C0DyEyDtB0EtGyE0D0FyBtG0DyE0BzztGtAtA0C0AtG0C0B0A0AyEyDyE0D0EyEyDyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0FtB0B0A0EyC0B0DtGzyzzzz0AtGyEzy0FtCtGzzyCyDyEtG0DyB0Ezyzz0F0Dzy0C0D0AtB2QtN0A0LzutBtN1B2Z1V1T1S1NzutCtCtBzy%26cr%3D1088146882%26a%3Dwncy_bxi01_15_43%26os%3DWindows%2B7%2BUltimate
CHR StartupUrls: Default -> "hxxps://br.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_bxi01_15_43¶m1=1¶m2=f%3D7%26b%3DChrome%26cc%3Dbr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0E0C0AzzyC0B0ByEyDtA0B0Fzy0AtA0DtN0D0Tzu0StCtAzytCtN1L2XzutAtFtCyEtFtDtFtCtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2StAyB0C0DyEyDtB0EtGyE0D0FyBtG0DyE0BzztGtAtA0C0AtG0C0B0A0AyEyDyE0D0EyEyDyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0FtB0B0A0EyC0B0DtGzyzzzz0AtGyEzy0FtCtGzzyCyDyEtG0DyB0Ezyzz0F0Dzy0C0D0AtB2QtN0A0LzutBtN1B2Z1V1T1S1NzutCtCtBzy%26cr%3D1088146882%26a%3Dwncy_bxi01_15_43%26os%3DWindows%2B7%2BUltimate"
CHR Profile: C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Payday Crew Theme) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\ekegeffmnmjnibnpaddchagjomdbcaji [2016-03-09]
CHR Extension: (Loja) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgaiicnhcohdgegabomljlkheilficfd [2016-03-09]
CHR Extension: (Alerta de ofertas e descontos) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\jikhbokinakhjbhoifafpbaemffhomjl [2016-04-24]
CHR Extension: (Loja) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-04-26]
CHR Extension: (MuteTab) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmkbaaijgpppbokgnhhoakihofedkgcc [2016-03-26]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Administrador\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-11]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]
StartMenuInternet: Google Chrome.NUEP45DQDIM767WFJN36JNPNAU - C:\Users\lálálálá\AppData\Local\Google\Chrome\Application\chrome.exe
StartMenuInternet: Google Chrome.S7PWHVHQVHRY3AMZS3ZNPNA3RM - C:\Users\lálálálá\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S4 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [1843368 2015-09-04] (Adobe Systems, Incorporated)
S4 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
S4 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
S4 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [279024 1999-12-31] (Intel Corporation)
S3 EasyAntiCheat; C:\Windows\system32\EasyAntiCheat.exe [243984 2016-02-19] (EasyAntiCheat Ltd)
S4 Hoplon Update Service; C:\Program Files\Hoplon\UpdateService\HoplonUpdateService.exe [43744 2015-04-02] ()
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [245760 2016-04-12] (Macrovision Corporation) [Arquivo não assinado]
S4 KMService; C:\Windows\system32\srvany.exe [8192 2015-03-07] () [Arquivo não assinado]
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [235696 2014-04-09] (McAfee, Inc.)
S4 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2015-10-24] ()
S4 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [229376 2016-03-27] () [Arquivo não assinado]
R2 RzKLService; C:\Program Files\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)
S4 ACTION_SVC; C:\Users\cristo\Action!\action_svc.exe [X]
S2 BlueSoleilCS; C:\Program Files\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [X]
S3 BsHelpCS; C:\Program Files\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [X]
S4 Connectify; "C:\Program Files\Connectify\ConnectifyService.exe" [X]
S4 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe /svc [X]
S4 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe /medsvc [X]
S3 Disc Soft Lite Bus Service; "C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe" [X]
S4 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [X]
S4 FreemakeVideoCapture; "C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe" [X]
S2 hshld; C:\Program Files\Hotspot Shield\bin\cmw_srv.exe [X]
S4 ICCS; "C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe" [X]
S4 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [X]
S4 SystemUsageReportSvc_WILLAMETTE; "C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe" [X]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R0 ambakdrv; C:\Windows\System32\ambakdrv.sys [26424 2014-08-19] () [Arquivo não assinado]
R2 ammntdrv; C:\Windows\system32\ammntdrv.sys [129720 2014-08-19] () [Arquivo não assinado]
R2 amwrtdrv; C:\Windows\system32\amwrtdrv.sys [14392 2014-08-19] () [Arquivo não assinado]
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [38984 2014-09-05] (The OpenVPN Project)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [190944 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [29664 2015-05-14] (AVG Technologies CZ, s.r.o.)
S1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [207328 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [170464 2015-06-10] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [213984 2015-05-12] (AVG Technologies CZ, s.r.o.)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [47456 2014-03-11] (Baidu, Inc.)
R1 cnnctfy3; C:\Windows\System32\DRIVERS\cnnctfy3.sys [36520 2015-10-19] (Connectify)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [26168 2015-12-21] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [40504 2015-12-21] (Disc Soft Ltd)
S3 dtproscsibus; C:\Windows\System32\DRIVERS\dtproscsibus.sys [26168 2015-11-11] (Disc Soft Ltd)
R3 easytether; C:\Windows\System32\DRIVERS\easytthr.sys [18632 2015-05-04] (Mobile Stream)
R0 fsbts; C:\Windows\System32\Drivers\fsbts.sys [63680 2016-04-29] ()
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [27040 2015-11-12] (LogMeIn, Inc.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-02-09] (REALiX(tm))
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x86.sys [110280 2013-11-29] (Qualcomm Atheros Co., Ltd.)
S3 MEI; C:\Windows\System32\DRIVERS\TeeDriver.sys [86488 1999-12-31] (Intel Corporation)
R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [113984 2015-04-07] (Power Software Ltd)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [329384 2015-08-30] (Duplex Secure Ltd.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [36944 2016-02-17] (Anchorfree Inc.)
S3 tun3326; C:\Windows\System32\DRIVERS\tun3326.sys [30392 2013-03-22] (The OpenVPN Project)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 BtAudioBusSrv; System32\Drivers\BtAudioBus.sys [X]
S3 catchme; \??\C:\Users\LLLL~1\AppData\Local\Temp\catchme.sys [X]
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]
S3 GGSAFERDriver; \??\C:\Program Files\Garena Plus\Room\safedrv.sys [X]
S1 pa_sys_config; system32\drivers\pa_sys_config.sys [X]
S1 pa_sys_config"register; system32\drivers\pa_sys_config"register.sys [X]
S1 pa_sys_config"unregister; system32\drivers\pa_sys_config"unregister.sys [X]
S3 PCFApiUtil; \??\C:\Program Files\PC Faster\5.1.0.0\PCFApiUtil.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
S3 XDva511; \??\C:\Windows\system32\XDva511.sys [X]
S3 XDva534; \??\C:\Windows\system32\XDva534.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
S3 xspirit; \??\C:\Windows\xspirit.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-29 18:48 - 2016-04-29 18:51 - 00019674 _____ C:\Users\Administrador\Downloads\FRST.txt
2016-04-29 18:47 - 2016-04-29 18:48 - 00000000 ____D C:\FRST
2016-04-29 18:47 - 2016-04-29 18:47 - 01728000 _____ (Farbar) C:\Users\Administrador\Downloads\FRST.exe
2016-04-29 18:45 - 2016-04-29 18:45 - 00629006 _____ C:\Users\Administrador\Downloads\Windows6.1-KB2999226-x86.msu
2016-04-29 18:41 - 2016-04-29 18:41 - 00001882 _____ C:\Users\Public\Desktop\PCSX2 1.4.0.lnk
2016-04-29 18:41 - 2016-04-29 18:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
2016-04-29 18:35 - 2016-04-29 18:42 - 00000000 ____D C:\Program Files\PCSX2 1.4.0
2016-04-29 18:27 - 2016-04-29 18:27 - 167735006 _____ C:\Users\Administrador\Downloads\EMULADOR PS2 (1).rar.crdownload
2016-04-29 18:19 - 2016-04-29 18:20 - 06503984 _____ (Microsoft Corporation) C:\Users\Administrador\Downloads\vcredist_x86.exe
2016-04-29 17:56 - 2016-04-29 17:56 - 00004321 _____ C:\Users\Administrador\Desktop\eo trem.fpl
2016-04-29 17:54 - 2016-04-29 17:56 - 13767776 _____ (Microsoft Corporation) C:\Users\Administrador\Downloads\vc_redist.x86 (3).exe
2016-04-29 17:51 - 2016-04-29 17:53 - 14572000 _____ (Microsoft Corporation) C:\Users\Administrador\Downloads\vc_redist.x64.exe
2016-04-29 17:32 - 2016-04-29 17:34 - 14170456 _____ (Microsoft Corporation) C:\Users\Administrador\Downloads\vc_redist.x86 (2).exe
2016-04-29 17:25 - 2016-04-29 17:26 - 13969576 _____ (Microsoft Corporation) C:\Users\Administrador\Downloads\vc_redist.x86 (1).exe
2016-04-29 17:18 - 2016-04-29 17:19 - 13767776 _____ (Microsoft Corporation) C:\Users\Administrador\Downloads\vc_redist.x86.exe
2016-04-29 17:13 - 2016-04-29 17:13 - 04997387 _____ C:\Users\Administrador\Downloads\Dll Files Fixer.rar
2016-04-29 17:07 - 2016-04-29 17:07 - 00509434 _____ C:\Users\Administrador\Downloads\dbghelp.zip
2016-04-29 17:04 - 2016-04-29 18:03 - 00116302 _____ C:\Users\Administrador\Downloads\post_reply.htm
2016-04-29 17:04 - 2016-04-29 17:04 - 00060769 _____ C:\Users\Administrador\Downloads\SOLUCOES_Aprenda_como_Corrigir_erros_de_DLL_em_jogos_ou_programas_do_PC_Solutions_Gamer [1].exe
2016-04-29 17:03 - 2016-04-29 17:04 - 01027994 _____ C:\Users\Administrador\Downloads\SOLUCOES_Aprenda_como_Corrigir_erros_de_DLL_em_jogos_ou_programas_do_PC_Solutions_Gamer.zip
2016-04-29 14:36 - 2016-04-29 14:37 - 02511137 _____ C:\Users\Administrador\Downloads\DrXd Gamerpaulo PCSX2 Bios 1.4.0.rar
2016-04-29 14:32 - 2016-04-29 14:40 - 17837152 _____ C:\Users\Administrador\Downloads\pcsx2-1.4.0-setup (1).exe
2016-04-29 14:28 - 2016-04-29 14:28 - 00008998 _____ C:\Users\Administrador\Downloads\api-ms-win-crt-runtime-l1-1-0.zip
2016-04-29 12:45 - 2016-04-29 12:54 - 21406927 _____ C:\Users\Administrador\Downloads\Todas As Bios.rar
2016-04-29 12:45 - 2016-04-29 12:52 - 17837152 _____ C:\Users\Administrador\Downloads\pcsx2-1.4.0-setup.exe
2016-04-29 06:58 - 2016-04-29 06:58 - 00017426 _____ C:\ComboFix.txt
2016-04-29 06:27 - 2016-04-29 06:26 - 00063680 _____ C:\Windows\system32\Drivers\fsbts.sys
2016-04-29 06:26 - 2016-04-29 06:27 - 00000000 ____D C:\Users\Todos os Usuários\F-Secure
2016-04-29 06:26 - 2016-04-29 06:27 - 00000000 ____D C:\ProgramData\F-Secure
2016-04-29 06:26 - 2016-04-29 06:26 - 00000000 ____D C:\Users\lálálálá\AppData\Local\FSDART
2016-04-29 06:23 - 2016-04-29 06:23 - 00000000 ____D C:\Users\Todos os Usuários\Electronic Arts
2016-04-29 06:23 - 2016-04-29 06:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-04-29 06:23 - 2016-04-29 06:23 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-04-29 06:22 - 2016-04-29 06:23 - 00000000 ____D C:\Program Files\Origin
2016-04-29 06:21 - 2016-04-29 06:21 - 04914720 _____ (Facebook Inc.) C:\Users\lálálálá\Downloads\Fsecure_T521332138038356T_.exe
2016-04-29 06:15 - 2016-04-29 06:15 - 00000000 ____D C:\found.003
2016-04-28 17:50 - 2016-04-28 17:53 - 649038713 _____ C:\Users\Administrador\Downloads\Prison Architect v5c.rar
2016-04-27 18:14 - 2016-04-27 18:14 - 00000000 ____D C:\Users\Administrador\Documents\Razer
2016-04-27 11:01 - 2016-04-27 11:01 - 00002068 _____ C:\Users\Public\Desktop\Razer Game Booster.lnk
2016-04-27 11:01 - 2016-04-27 11:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2016-04-27 11:01 - 2016-04-27 11:01 - 00000000 ____D C:\Program Files\Razer
2016-04-27 10:56 - 2016-04-27 10:56 - 00000825 _____ C:\Users\Public\Desktop\Line Of Sight.lnk
2016-04-27 10:56 - 2016-04-27 10:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Line Of Sight
2016-04-27 10:56 - 2016-02-19 01:24 - 00243984 _____ (EasyAntiCheat Ltd) C:\Windows\system32\EasyAntiCheat.exe
2016-04-27 10:47 - 2016-04-27 10:51 - 41954352 _____ (Razer Inc. ) C:\Users\lálálálá\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2016-04-27 07:59 - 2016-04-27 10:44 - 1507050136 _____ C:\Users\lálálálá\Downloads\LineOfSight_BR_160419_02_26543.exe
2016-04-26 20:02 - 2016-04-26 20:32 - 122010296 _____ (Razer Inc. ) C:\Users\Administrador\Downloads\RazerCortexSetup_7.1.14.12241.exe
2016-04-25 23:08 - 2016-04-25 23:08 - 00001566 _____ C:\Users\Administrador\Desktop\Ripened Peach Sex Sim.lnk
2016-04-25 23:05 - 2016-04-25 23:06 - 00002123 _____ C:\Sex Sim Setup Log.txt
2016-04-25 19:00 - 2016-04-25 19:00 - 00000213 _____ C:\Users\Administrador\Desktop\Team Fortress 2.url
2016-04-25 17:08 - 2016-04-25 17:08 - 00000324 _____ C:\Users\Administrador\Desktop\IdleMaster.appref-ms
2016-04-25 17:08 - 2016-04-25 17:08 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IdleMaster
2016-04-25 17:06 - 2016-04-25 17:08 - 00000000 ____D C:\Users\Administrador\AppData\Local\Deployment
2016-04-25 17:00 - 2016-04-25 17:00 - 00484696 _____ () C:\Users\Administrador\Downloads\setup.exe
2016-04-25 06:15 - 2016-04-25 06:15 - 00000000 ____D C:\found.002
2016-04-24 20:20 - 2016-04-24 20:20 - 00000913 _____ C:\Users\Administrador\Downloads\Pasta com senha.txt
2016-04-24 09:28 - 2016-04-24 09:30 - 05149374 _____ C:\Users\lálálálá\Downloads\Projota - Ela Só Quer Paz.3gp
2016-04-23 15:36 - 2016-04-23 15:36 - 01077992 _____ C:\Users\Administrador\Downloads\Game.prison
2016-04-23 14:11 - 2016-04-23 14:14 - 00000000 ____D C:\Users\lálálálá\Desktop\bloodstrikeclient
2016-04-23 12:46 - 2016-04-23 12:52 - 31332536 _____ (Electronic Arts, Inc.) C:\Users\lálálálá\Downloads\OriginThinSetup.exe
2016-04-22 20:02 - 2016-04-22 20:03 - 01677392 _____ C:\Users\lálálálá\Downloads\Amok Kukrii Sticker Bomb-GF.rar
2016-04-22 08:59 - 2016-04-22 09:02 - 40181536 _____ C:\Users\lálálálá\Desktop\bloodstrike.exe
2016-04-22 07:40 - 2016-04-22 08:22 - 00000000 ____D C:\Users\lálálálá\Desktop\seujogo
2016-04-21 12:45 - 2016-04-21 12:48 - 07853527 _____ C:\Users\Administrador\Downloads\StuffPlusPrisonArchitectSaveFilesA5-34.zip
2016-04-20 21:29 - 2016-04-20 21:30 - 00565405 _____ C:\Users\Administrador\Downloads\SPPrisonArchitectSaves1.zip
2016-04-20 13:28 - 2016-04-20 13:32 - 06359491 _____ C:\Users\lálálálá\Downloads\Pack Beast By MarcioRUSH.zip
2016-04-19 12:28 - 2016-04-19 12:35 - 28764125 _____ C:\Users\lálálálá\Downloads\Flo Rida - My House [Official Video].mp4
2016-04-18 05:55 - 2016-04-18 05:55 - 00231453 _____ C:\Users\Administrador\Downloads\Traducao de Prison Architect.rar
2016-04-18 05:54 - 2016-04-18 05:55 - 00230506 _____ C:\Users\Administrador\Downloads\208614072.rar
2016-04-18 05:04 - 2016-04-18 05:07 - 00000000 ____D C:\Users\Administrador\AppData\Local\Introversion
2016-04-18 05:04 - 2016-04-18 05:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2016-04-18 05:04 - 2016-04-18 05:04 - 00000000 ____D C:\GOG Games
2016-04-18 00:09 - 2016-04-18 00:09 - 00040666 _____ C:\Users\Administrador\Downloads\Tradução Prison Architect Alpha 31.rar
2016-04-17 22:25 - 2016-04-17 22:39 - 90938647 _____ C:\Users\Administrador\Downloads\Tradução_SimCity.rar
2016-04-17 21:28 - 2016-04-17 21:28 - 00000000 ____D C:\Users\Administrador\Downloads\Nova pasta (2)
2016-04-17 21:06 - 2016-04-17 21:06 - 11646020 _____ C:\Users\Administrador\Downloads\SC-5--Ativar-DLC_2.rar
2016-04-17 20:59 - 2016-04-17 20:59 - 00012779 _____ C:\Users\Administrador\Downloads\SimCity5-patch-SerGamer (1).torrent
2016-04-17 20:48 - 2016-04-17 20:48 - 00000740 _____ C:\Users\Administrador\Desktop\Play SimCity 2013 Offline.lnk
2016-04-17 20:48 - 2016-04-17 20:48 - 00000000 ____D C:\Users\Administrador\Documents\SimCity
2016-04-17 16:08 - 2016-04-17 16:08 - 00019328 _____ C:\Users\Administrador\Downloads\SC-5-Completo-SerGamer_2 (1).rar
2016-04-17 16:08 - 2016-04-17 16:08 - 00012779 _____ C:\Users\Administrador\Downloads\SimCity5-patch-SerGamer.torrent
2016-04-17 16:06 - 2016-04-17 16:06 - 00019328 _____ C:\Users\Administrador\Downloads\SC-5-Completo-SerGamer_2.rar
2016-04-17 15:14 - 2016-04-17 15:14 - 00004055 _____ C:\Users\Administrador\Desktop\we.fpl
2016-04-17 15:07 - 2016-04-17 15:07 - 00000000 ____D C:\found.001
2016-04-17 13:55 - 2016-04-23 09:36 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-04-17 12:11 - 2016-04-17 12:12 - 03943861 _____ C:\Users\lálálálá\Downloads\Pack GV BLACK CAMO.rar
2016-04-17 07:30 - 2016-04-17 07:31 - 00347130 _____ C:\Users\lálálálá\Downloads\[PB] - [Pack] AUG A3 ASIIMOV.rar
2016-04-16 22:29 - 2016-04-16 22:31 - 12595890 _____ C:\Users\Administrador\Downloads\foobi_by_du22y-d7gy0yk.7z
2016-04-16 22:18 - 2016-04-16 22:20 - 04244467 _____ C:\Users\Administrador\Downloads\catrox__1_april_2014__by_extremehunter1972-d636na7.rar
2016-04-16 21:57 - 2016-04-16 21:57 - 00000000 ____D C:\Users\Administrador\AppData\Local\AlbumArtDownloader
2016-04-16 21:55 - 2016-04-16 21:55 - 03491888 _____ C:\Users\Administrador\Downloads\a4038ecc967926f3a12c68c7a0896057-d15czyk (1).rar
2016-04-16 21:45 - 2016-04-16 21:46 - 03491888 _____ C:\Users\Administrador\Downloads\a4038ecc967926f3a12c68c7a0896057-d15czyk.rar
2016-04-16 19:53 - 2016-04-16 19:53 - 00322104 _____ C:\Users\Administrador\Downloads\zetromix_by_raf_by_ralphiiiii-d75b7zh.rar
2016-04-16 19:49 - 2016-04-16 19:49 - 00000369 _____ C:\Users\Administrador\Downloads\ZetroMix_info.rar
2016-04-16 19:45 - 2016-04-16 19:45 - 00004055 _____ C:\Users\Administrador\Desktop\Best.fpl
2016-04-16 19:38 - 2016-04-16 19:38 - 03920344 _____ (foobar2000.org) C:\Users\Administrador\Downloads\foobar2000_v1.3.10.exe
2016-04-16 18:47 - 2016-04-16 19:23 - 00000000 ____D C:\Users\Administrador\Desktop\Músicas
2016-04-16 11:56 - 2016-04-16 11:58 - 09641236 _____ C:\Users\lálálálá\Downloads\PACK GV VERA CRUZ 2016.rar
2016-04-15 18:54 - 2016-04-29 10:21 - 00000000 ____D C:\Users\Administrador\Desktop\Ibagens
2016-04-15 16:23 - 2016-04-15 16:23 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-04-15 16:20 - 2016-04-15 16:20 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2016-04-14 03:51 - 2016-04-14 03:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RailSimulator.com
2016-04-13 16:47 - 2016-04-13 16:48 - 00047166 _____ C:\Users\Administrador\Downloads\[BMGT] Train Simulator 2015 - SKIDROW.torrent
2016-04-13 14:19 - 2016-04-13 14:20 - 10065747 _____ C:\Users\Administrador\Downloads\MERCENARIES.2.WIF.V1.0.ALL.RELOADED.NOCD.ZIP
2016-04-12 18:14 - 2016-04-12 18:14 - 00018720 _____ C:\Users\Administrador\Downloads\mercenaries-2-world-in-flames1.rar
2016-04-12 18:14 - 2016-04-12 18:14 - 00018720 _____ C:\Users\Administrador\Downloads\mercenaries-2-world-in-flames1 (1).rar
2016-04-12 14:09 - 2016-04-12 14:09 - 00001821 _____ C:\Users\Administrador\Desktop\Mercenaries2 - Atalho.lnk
2016-04-12 13:14 - 2016-04-12 13:14 - 00000000 ____D C:\Users\Administrador\Documents\My Games
2016-04-12 06:07 - 2016-04-12 06:07 - 00000000 ____D C:\Users\Administrador\AppData\Local\Downloaded Installations
2016-04-12 05:36 - 2016-04-12 05:36 - 00321602 _____ C:\Users\Administrador\Downloads\Mercenaries.Playground.Of.Dest.keygen.by.ACME.exe.zip
2016-04-11 20:26 - 2016-04-11 20:26 - 09911696 _____ C:\Users\Administrador\Downloads\American.Truck.Simulator.v1.0.0.0.x86(2).rar
2016-04-11 20:18 - 2016-04-11 20:23 - 09911696 _____ C:\Users\Administrador\Downloads\American.Truck.Simulator.v1.0.0.0.x86(1).rar
2016-04-11 18:23 - 2016-04-11 18:23 - 00000216 _____ C:\Users\Administrador\Desktop\American Truck Simulator Demo.url
2016-04-10 06:43 - 2016-04-10 06:43 - 00000000 ____D C:\Users\lálálálá\Documents\League of Legends
2016-04-10 06:28 - 2016-04-10 06:28 - 00000000 ____D C:\Users\lálálálá\AppData\Roaming\LolClient
2016-04-09 21:13 - 2016-04-09 21:13 - 00000000 ____D C:\Users\Todos os Usuários\Riot Games
2016-04-09 21:13 - 2016-04-09 21:13 - 00000000 ____D C:\ProgramData\Riot Games
2016-04-09 21:06 - 2016-04-09 21:06 - 00000000 ____D C:\Riot Games
2016-04-09 21:06 - 2016-04-09 21:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2016-04-09 20:57 - 2016-04-09 21:04 - 27870824 _____ (Riot Games) C:\Users\lálálálá\Downloads\LeagueofLegends_BR_Installer_9_15_2014.exe
2016-04-09 07:31 - 2016-04-09 10:14 - 00000000 ____D C:\Users\lálálálá\Downloads\Blue Muzzle
2016-04-09 07:29 - 2016-04-09 07:31 - 02622292 _____ C:\Users\lálálálá\Downloads\Blue MuzzleBy Gabryeell4i20.rar
2016-04-07 14:54 - 2016-04-07 14:54 - 03855447 _____ C:\Users\lálálálá\Downloads\Aula 05 - Anatomia Sistêmica (2).pptx
2016-04-07 14:40 - 2016-04-07 14:42 - 13963522 _____ C:\Users\lálálálá\Downloads\Aula 04 - Anatomia Sistêmica.pptx
2016-04-07 14:31 - 2016-04-07 14:32 - 04352347 _____ C:\Users\lálálálá\Downloads\Aula 03 - Anatomia Sistêmica.pptx
2016-04-07 14:13 - 2016-04-07 14:13 - 05154870 _____ C:\Users\lálálálá\Downloads\Aula 02 - Anatomia Sistêmica.pptx
2016-04-07 13:30 - 2016-04-07 13:33 - 20690075 _____ C:\Users\lálálálá\Downloads\Aula 01 - Anatomia Sistêmica (1).pptx
2016-04-07 11:25 - 2016-04-07 11:25 - 00000898 _____ C:\Users\Administrador\Desktop\mb_warband.CT
2016-04-06 18:58 - 2016-04-06 18:58 - 00001040 _____ C:\Users\Administrador\Desktop\Cheat Engine.lnk
2016-04-06 18:58 - 2016-04-06 18:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.5
2016-04-06 18:58 - 2016-04-06 18:58 - 00000000 ____D C:\Program Files\Cheat Engine 6.5
2016-04-06 17:57 - 2016-04-06 17:57 - 00000672 _____ C:\Users\Administrador\Desktop\Enforcer Police Crime Action.lnk
2016-04-06 17:57 - 2016-04-06 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enforcer Police Crime Action
2016-04-06 16:18 - 2016-04-06 16:25 - 00000000 ____D C:\Users\Administrador\Documents\Mount&Blade Warband Savegames
2016-04-06 16:10 - 2016-04-06 16:14 - 01994505 _____ C:\Users\Administrador\Downloads\tradução MB TNX (1).rar
2016-04-06 16:04 - 2016-04-06 16:07 - 00097299 _____ C:\Users\Administrador\Downloads\tradução MB TNX.rar
2016-04-06 16:02 - 2016-04-06 16:02 - 00000667 _____ C:\Users\Convidado\Desktop\Mount&Blade Warband.lnk
2016-04-06 16:02 - 2016-04-06 16:02 - 00000667 _____ C:\Users\Administrador\Desktop\Mount&Blade Warband.lnk
2016-04-06 16:02 - 2016-04-06 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mount&Blade Warband
2016-04-06 15:59 - 2016-04-06 16:22 - 00000000 ____D C:\Users\Administrador\Documents\Mount&Blade Warband
2016-04-06 15:33 - 2016-04-06 15:33 - 00016825 _____ C:\Users\Administrador\Downloads\godfather2_savegamedownload.zip
2016-04-02 21:59 - 2016-04-02 22:00 - 06344671 _____ C:\Users\lálálálá\Downloads\aula 08 - anatomia sistêmica.pptx
2016-04-02 21:58 - 2016-04-02 21:59 - 03865283 _____ C:\Users\lálálálá\Downloads\aula 07 - anatomia sistêmica.pptx
2016-04-02 21:56 - 2016-04-02 21:57 - 03855442 _____ C:\Users\lálálálá\Downloads\aula 05 - anatomia sistêmica (1).pptx
2016-04-02 21:49 - 2016-04-02 21:50 - 03855447 _____ C:\Users\lálálálá\Downloads\aula 05 - anatomia sistêmica.pptx
2016-04-02 21:45 - 2016-04-02 21:47 - 09774409 _____ C:\Users\lálálálá\Downloads\sde0906_apresentação da aula 10 (1).pptx
2016-04-02 21:41 - 2016-04-02 21:42 - 09774409 _____ C:\Users\lálálálá\Downloads\sde0906_apresentação da aula 10.pptx
2016-04-02 21:32 - 2016-04-02 21:44 - 08871626 _____ C:\Users\lálálálá\Downloads\sde0906_apresentação da aula 1.pptx
2016-04-02 21:30 - 2016-04-02 21:41 - 20690400 _____ C:\Users\lálálálá\Downloads\aula 01 - anatomia sistêmica.pptx
2016-04-02 06:22 - 2016-04-02 06:23 - 00000000 ____D C:\Users\Administrador\Documents\Stronghold Crusader 2
2016-04-01 21:47 - 2016-04-25 19:00 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-04-01 21:47 - 2016-04-01 21:47 - 00000216 _____ C:\Users\Administrador\Desktop\Stronghold Crusader 2.url
2016-04-01 21:43 - 2016-04-01 21:43 - 00000000 ____D C:\Users\Administrador\AppData\Local\Steam
2016-04-01 21:28 - 2016-04-29 17:44 - 00000000 ____D C:\Program Files\Steam
2016-04-01 21:28 - 2016-04-01 21:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-04-01 21:27 - 2016-04-01 21:27 - 01380712 _____ C:\Users\Administrador\Downloads\SteamSetup.exe
2016-04-01 14:07 - 2016-04-01 14:07 - 00000000 ____D C:\Users\lálálálá\AppData\Local\proXPN B.V
2016-04-01 14:02 - 2016-04-01 15:12 - 00009894 _____ C:\Users\lálálálá\proXPN.ovpn
2016-04-01 12:25 - 2016-04-01 12:25 - 00000000 ____D C:\Program Files\AVAST Software
2016-04-01 12:25 - 2014-09-05 14:09 - 00038984 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\aswTap.sys
2016-04-01 06:21 - 2016-04-01 06:21 - 00001592 _____ C:\Users\Convidado\Desktop\Kaybo.lnk
2016-04-01 06:21 - 2016-04-01 06:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaybo
2016-03-31 23:24 - 2016-04-01 01:27 - 1667279660 _____ C:\Users\lálálálá\Downloads\SetupPB_20160311.exe
2016-03-31 23:21 - 2016-03-31 23:21 - 00000000 ____D C:\Users\Administrador\Desktop\Resiltado exame
2016-03-31 18:54 - 2016-03-31 18:54 - 00000000 ____D C:\MadByte Games
2016-03-31 15:44 - 2016-03-31 18:53 - 1356985520 _____ C:\Users\lálálálá\Downloads\zula_full_setup.exe
2016-03-30 12:56 - 2016-03-30 12:56 - 00006007 _____ C:\Users\lálálálá\Downloads\Certidao20160330_125724_8d721424-a475-4329-9909-19fcc2ac71c7.pdf
2016-03-30 12:56 - 2016-03-30 12:56 - 00006005 _____ C:\Users\lálálálá\Downloads\Certidao20160330_125733_4e685334-28d2-44a9-94a8-26e70e9c1181.pdf
2016-03-30 12:47 - 2016-03-30 12:47 - 00073133 _____ C:\Users\lálálálá\Downloads\Resultado exame.pdf
2016-03-30 08:36 - 2016-03-30 08:36 - 00006038 _____ C:\Users\lálálálá\Downloads\Certidao20160330_083805_bc2f1e22-aab9-418b-9d00-b705a9aa9e35.pdf

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-29 18:42 - 2015-03-11 11:10 - 00000000 ____D C:\Windows\system32\directx
2016-04-29 18:22 - 2015-03-09 08:59 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-04-29 18:22 - 2015-03-09 08:59 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-29 18:14 - 2016-03-25 17:09 - 00001060 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-29 17:59 - 2016-01-28 15:07 - 132539272 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-04-29 17:59 - 2016-01-28 15:07 - 00000000 ____D C:\Windows\system32\MRT
2016-04-29 17:59 - 2009-07-14 01:34 - 00019568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-29 17:59 - 2009-07-14 01:34 - 00019568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-29 17:44 - 2016-03-25 17:09 - 00001056 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-29 17:43 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-29 17:00 - 2015-12-21 05:41 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\uTorrent
2016-04-29 14:25 - 2009-07-14 01:52 - 00000000 ____D C:\Windows\addins
2016-04-29 12:41 - 2016-01-20 14:24 - 00000000 ____D C:\Users\Administrador\AppData\LocalLow\Temp
2016-04-29 06:58 - 2016-03-16 16:09 - 00000000 ____D C:\Qoobox
2016-04-29 06:56 - 2009-07-13 23:04 - 00000215 _____ C:\Windows\system.ini
2016-04-27 18:14 - 2015-09-08 11:37 - 00000000 ____D C:\Users\Administrador\AppData\Local\Razer_Inc
2016-04-27 18:12 - 2015-09-08 11:33 - 00000000 ____D C:\Users\Administrador\AppData\Local\Razer
2016-04-27 12:52 - 2016-03-27 17:23 - 00000000 ____D C:\Users\lálálálá\Desktop\pb
2016-04-27 11:03 - 2016-02-09 15:19 - 00000000 ____D C:\Users\lálálálá\AppData\Local\Razer_Inc
2016-04-27 11:02 - 2015-11-03 16:49 - 00000000 ____D C:\Users\lálálálá\AppData\Local\Razer
2016-04-27 11:01 - 2016-03-25 12:28 - 00000000 ____D C:\Users\Todos os Usuários\Razer
2016-04-27 11:01 - 2016-03-25 12:28 - 00000000 ____D C:\ProgramData\Razer
2016-04-27 10:51 - 2016-03-24 17:33 - 00000000 ____D C:\Level Up
2016-04-27 10:37 - 2016-02-19 14:43 - 00000000 ____D C:\Users\lálálálá\Documents\LevelUp Data
2016-04-27 10:37 - 2016-01-02 07:26 - 00000000 ____D C:\Users\lálálálá\AppData\Local\Level Up!
2016-04-27 08:17 - 2016-03-28 09:55 - 00000000 ____D C:\Users\lálálálá\Desktop\jogos
2016-04-27 08:17 - 2016-03-24 17:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Level Up
2016-04-26 17:51 - 2015-07-20 11:41 - 00000000 ____D C:\Program Files\Common Files\Steam
2016-04-25 23:08 - 2016-03-21 23:51 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ripened Peach Sex Sim
2016-04-25 23:06 - 2016-02-11 19:38 - 00000000 ___RD C:\Users\Administrador\Desktop\Decumentos
2016-04-25 17:06 - 2016-01-30 00:22 - 00000000 ____D C:\Users\Administrador\AppData\Local\Apps\2.0
2016-04-25 05:31 - 2016-03-25 19:30 - 00000000 ____D C:\Program Files\RaidCall
2016-04-24 13:01 - 2015-10-19 20:35 - 00000000 ____D C:\Users\lálálálá\AppData\Roaming\Skype
2016-04-23 09:36 - 2016-02-01 17:26 - 00000000 ____D C:\Users\lálálálá\AppData\Local\Unity
2016-04-22 09:32 - 2016-03-28 09:56 - 00000000 ____D C:\Users\lálálálá\Desktop\comunidade
2016-04-22 08:22 - 2016-01-08 21:40 - 00000000 ____D C:\Users\lálálálá\Desktop\MUSICAS MINHAS
2016-04-18 05:04 - 2009-07-14 01:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-04-17 21:29 - 2016-03-29 17:18 - 00000000 ____D C:\Users\Administrador\Documents\Arquivos do Outlook
2016-04-16 22:56 - 2016-02-02 23:24 - 00000000 ____D C:\Users\Administrador\Desktop\Zoas
2016-04-15 19:50 - 2016-03-14 11:16 - 00000000 ____D C:\Users\Administrador\AppData\Roaming\Omerta
2016-04-14 05:18 - 2015-09-08 11:56 - 00000000 ____D C:\Users\Administrador\AppData\Local\SKIDROW
2016-04-12 13:52 - 2016-03-19 07:41 - 00000000 ____D C:\Program Files\EA Games
2016-04-12 13:43 - 2015-11-23 11:48 - 00107888 _____ (Sony DADC Austria AG.) C:\Windows\system32\CmdLineExt.dll
2016-04-11 20:42 - 2016-03-09 18:59 - 00000000 ____D C:\Users\Administrador\Documents\American Truck Simulator
2016-04-11 20:33 - 2016-03-25 17:14 - 00002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-11 20:33 - 2016-03-25 17:14 - 00002124 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-09 21:06 - 2015-12-29 06:46 - 00000000 ____D C:\Users\lálálálá\AppData\Roaming\Riot Games
2016-04-01 14:57 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\inf
2016-04-01 14:02 - 2015-10-19 20:32 - 00000000 ____D C:\Users\lálálálá
2016-04-01 14:02 - 2009-07-13 23:04 - 00000600 _____ C:\Windows\win.ini

==================== Arquivos na raiz de alguns diretórios =======

2015-12-21 08:45 - 2016-01-31 23:12 - 0000165 _____ () C:\Users\Administrador\AppData\Roaming\WB.CFG
2015-09-08 23:24 - 2015-09-08 23:24 - 0007607 _____ () C:\Users\Administrador\AppData\Local\Resmon.ResmonCfg
2015-04-21 08:36 - 2015-04-21 08:36 - 0000160 _____ () C:\ProgramData\bc.ini
2016-03-10 20:32 - 2016-03-10 20:32 - 0000016 _____ () C:\ProgramData\mntemp

Alguns arquivos em TEMP:
====================
C:\Users\Administrador\AppData\Local\temp\vcredist_2015_Update_1_x86.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2015-06-13 17:08

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité