cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:05-03-2016 01
Executado por MarcioPaula (administrador) em ADMIN (05-04-2016 15:11:18)
Executando a partir de C:\Users\MarcioPaula\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6GNLEUNR
Perfis Carregados: MarcioPaula (Perfis Disponíveis: MarcioPaula)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: IE)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(GAS Tecnologia) C:\Program Files\GbPlugin\gbpsv.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
() C:\Program Files\AppBrad\NetExpressUpdater.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe
(Dropbox, Inc.) C:\Users\MarcioPaula\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.6.0.142\nsbu.exe
(Symantec Corporation) C:\Program Files\Norton Family\Engine\3.5.1.17\nf.exe
(Symantec Corporation) C:\Program Files\Norton Security with Backup\Engine\22.6.0.142\nsbu.exe
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
(Symantec Corporation) C:\Program Files\Norton Family\Engine\3.5.1.17\tampmon.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Symantec Corporation) C:\Program Files\Norton Family\Engine\3.5.1.17\nf.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
Winlogon\Notify\ GbPluginUni: C:\Program Files\GbPlugin\gbiehUni.dll [2015-07-06] (Banco Itaú Unibanco)
HKU\S-1-5-21-1270427373-3192164834-2053952482-1000\...\Run: [Dropbox Update] => C:\Users\MarcioPaula\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-19] (Dropbox, Inc.)
HKU\S-1-5-21-1270427373-3192164834-2053952482-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-08-08] (Apple Inc.)
HKU\S-1-5-21-1270427373-3192164834-2053952482-1000\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-08-14] (Apple Inc.)
HKU\S-1-5-21-1270427373-3192164834-2053952482-1000\...\Run: [iCloudDrive] => C:\Program Files\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2014-08-15] (Apple Inc.)
HKU\S-1-5-21-1270427373-3192164834-2053952482-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [10240 2009-07-13] (Microsoft Corporation)
SSODL: CompIBBrd - {A3717295-941D-416F-9384-ED1736729F1C} - C:\Program Files\Scpad\scpLIB.dll (Banco Bradesco S.A.)
ShellExecuteHooks: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\Program Files\GbPlugin\gbiehuni.dll [1759992 2015-07-06] (Banco Itaú Unibanco)
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security with Backup\Engine\22.6.0.142\buShell.dll [2016-02-18] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security with Backup\Engine\22.6.0.142\buShell.dll [2016-02-18] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security with Backup\Engine\22.6.0.142\buShell.dll [2016-02-18] (Symantec Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MarcioPaula\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MarcioPaula\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MarcioPaula\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MarcioPaula\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MarcioPaula\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MarcioPaula\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MarcioPaula\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MarcioPaula\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-11] (Dropbox, Inc.)
Startup: C:\Users\MarcioPaula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-03-21]
ShortcutTarget: Dropbox.lnk -> C:\Users\MarcioPaula\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{19C15A84-6CA3-4AE2-869B-3439FCF40A0F}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{D576FB1E-9A33-46A7-92D0-EBEF66042173}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\S-1-5-21-1270427373-3192164834-2053952482-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1270427373-3192164834-2053952482-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1270427373-3192164834-2053952482-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://br.msn.com/
HKU\S-1-5-21-1270427373-3192164834-2053952482-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://positivo.br.msn.com?pc=MAPT
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {07F18D79-97C4-4820-92BA-786E9A516CA6} URL = hxxp://www.bing.com/search?q={searchTerms}&form=POSTDF&pc=POS2&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1270427373-3192164834-2053952482-1000 -> {07F18D79-97C4-4820-92BA-786E9A516CA6} URL =
SearchScopes: HKU\S-1-5-21-1270427373-3192164834-2053952482-1000 -> {36F135AC-7E47-4E79-A07F-ADF23C6003DE} URL = hxxp://www.mp3hd.com.br/baixar/{searchTerms}/
SearchScopes: HKU\S-1-5-21-1270427373-3192164834-2053952482-1000 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=360&chn=retail&geo=BR&ver=20&locale=pt_BR&gct=kwd&qsrc=2869
BHO: ssh2 Class -> {2E3C3651-B19C-4DD9-A979-901EC3E930AF} -> C:\Program Files\Scpad\scpsssh2.dll [2013-01-23] (Banco Bradesco S.A.)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security with Backup\Engine\22.6.0.142\coIEPlg.dll [2016-02-21] (Symantec Corporation)
BHO: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Norton 360 Premier Edition\Engine\21.7.0.11\IPS\IPSBHO.DLL => Nenhum Arquivo
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-03-31] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-29] (Google Inc.)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-11-22] (Skype Technologies S.A.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Norton Family BHO -> {B8E07826-0971-4f16-B133-047B88034E89} -> C:\Program Files\Norton Family\Engine\3.5.1.17\coIEPlg.dll [2016-02-15] (Symantec Corporation)
BHO: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\Program Files\GbPlugin\gbiehuni.dll [2015-07-06] (Banco Itaú Unibanco)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-07-07] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-31] (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll [2011-07-07] (Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-29] (Google Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security with Backup\Engine\22.6.0.142\coIEPlg.dll [2016-02-21] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-1270427373-3192164834-2053952482-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-12-29] (Google Inc.)
DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.0.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Nenhum Arquivo
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Nenhum Arquivo
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-11-22] (Skype Technologies S.A.)

FireFox:
========
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-05-06] ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-31] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-31] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Nenhum Arquivo]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1270427373-3192164834-2053952482-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\MarcioPaula\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1270427373-3192164834-2053952482-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\MarcioPaula\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-02-24] (Unity Technologies ApS)
FF HKLM\...\Firefox\Extensions: [{6D5C8FC4-DE46-41bf-9092-93F0F78E9115}] - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_3.4.0.43\coFFFw
FF Extension: Norton Family - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_3.4.0.43\coFFFw [2016-01-12] [não assinado]
FF HKLM\...\Firefox\Extensions: [{8A0D66E3-1C08-49A6-8F6C-7E024029D199}] - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_3.4.0.43\coFFAddon
FF Extension: Norton™ Family - C:\ProgramData\Norton\{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}\NSM_3.4.0.43\coFFAddon [2016-03-16]
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.5.4.24\coFFAddon
FF Extension: Norton Identity Safe - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NSBU_22.5.4.24\coFFAddon [2016-03-29]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://nortonsafe.search.ask.com/web?q={searchTerms}&o=apn10506&prt=cr
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxp://ss-sym.ask.com/query?q={searchTerms}&sstype=prefix&li=ff
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\49.0.2623.87\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\49.0.2623.87\ppGoogleNaClPluginChrome.dll => Nenhum Arquivo
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\49.0.2623.87\pdf.dll => Nenhum Arquivo
CHR Plugin: (Norton Identity Safe) - C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.1.1.4_0\npcoplgn.dll => Nenhum Arquivo
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll => Nenhum Arquivo
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll => Nenhum Arquivo
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll => Nenhum Arquivo
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Nenhum Arquivo
CHR Profile: C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-01]
CHR Extension: (Norton Security Toolbar) - C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-02-29]
CHR Extension: (Google Search) - C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-05]
CHR Extension: (Norton Home Page for Chrome) - C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbdobdndcjhdmljipngpeoekdinlohe [2016-02-25]
CHR Extension: (Norton Identity Safe) - C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2014-08-13]
CHR Extension: (Skype) - C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-02-25]
CHR Extension: (Norton™ Family) - C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default\Extensions\napjheenlliimoedooldaalpjfidlidp [2016-03-16]
CHR Extension: (Norton Safe) - C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2016-02-25]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-03]
CHR Extension: (Gmail) - C:\Users\MarcioPaula\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-06]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security with Backup\Engine\22.6.0.142\Exts\Chrome.crx [2016-02-21]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-11-22]
CHR HKLM\...\Chrome\Extension: [napjheenlliimoedooldaalpjfidlidp] - C:\Program Files\Norton Family\Engine\3.5.1.17\Extensions\Chrome.crx [2016-03-11]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [62464 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 ALG; C:\Windows\System32\alg.exe [59392 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [27648 2014-08-18] (Microsoft Corporation) [Arquivo não assinado]
S3 Appinfo; C:\Windows\System32\appinfo.dll [47104 2013-02-27] (Microsoft Corporation) [Arquivo não assinado]
R2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [475136 2014-10-02] (Microsoft Corporation) [Arquivo não assinado]
R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [475136 2014-10-02] (Microsoft Corporation) [Arquivo não assinado]
S4 AVerRemote; C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe [348160 2009-10-30] (AVerMedia) [Arquivo não assinado]
S4 AVerScheduleService; C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe [397312 2009-12-06] () [Arquivo não assinado]
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [88064 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 BDESVC; C:\Windows\System32\bdesvc.dll [76800 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 BFE; C:\Windows\System32\bfe.dll [494592 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 BITS; C:\Windows\system32\qmgr.dll [585728 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 Browser; C:\Windows\System32\browser.dll [102912 2012-07-04] (Microsoft Corporation) [Arquivo não assinado]
S3 bthserv; C:\Windows\system32\bthserv.dll [64512 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 CertPropSvc; C:\Windows\System32\certprop.dll [67584 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [143872 2014-07-06] (Microsoft Corporation) [Arquivo não assinado]
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [376832 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 defragsvc; C:\Windows\System32\defragsvc.dll [218624 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 Dhcp; C:\Windows\system32\dhcpcore.dll [254464 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 Dnscache; C:\Windows\System32\dnsrslvr.dll [132608 2011-03-03] (Microsoft Corporation) [Arquivo não assinado]
S3 dot3svc; C:\Windows\System32\dot3svc.dll [214016 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 DPS; C:\Windows\system32\dps.dll [144384 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 EapHost; C:\Windows\System32\eapsvc.dll [98304 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 EFS; C:\Windows\System32\lsass.exe [22528 2015-01-15] (Microsoft Corporation) [Arquivo não assinado]
S3 ehRecvr; C:\Windows\ehome\ehRecvr.exe [556544 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 ehSched; C:\Windows\ehome\ehsched.exe [94720 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S4 eTSrv; C:\Program Files\Aladdin\eToken\PKIClient\x32\eTSrv.exe [12640 2009-12-31] (Aladdin Knowledge Systems, Ltd.)
R2 eventlog; C:\Windows\System32\wevtsvc.dll [1086976 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 EventSystem; C:\Windows\system32\es.dll [271360 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 Fax; C:\Windows\system32\fxssvc.exe [523264 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 fdPHost; C:\Windows\system32\fdPHost.dll [12800 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 FDResPub; C:\Windows\system32\fdrespub.dll [28160 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 FontCache; C:\Windows\system32\FntCache.dll [906240 2013-03-29] (Microsoft Corporation) [Arquivo não assinado]
R2 GbpSv; C:\Program Files\GbPlugin\gbpsv.exe [546104 2014-09-29] (GAS Tecnologia)
R2 gpsvc; C:\Windows\System32\gpsvc.dll [593408 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 hidserv; C:\Windows\System32\hidserv.dll [49152 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 hkmsvc; C:\Windows\system32\kmsvc.dll [71168 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [194560 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [165376 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [102912 2015-01-11] (Microsoft Corporation) [Arquivo não assinado]
R2 IKEEXT; C:\Windows\System32\ikeext.dll [679424 2013-10-11] (Microsoft Corporation) [Arquivo não assinado]
S3 IPBusEnum; C:\Windows\system32\ipbusenum.dll [78848 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [499712 2012-10-03] (Microsoft Corporation) [Arquivo não assinado]
S3 KeyIso; C:\Windows\system32\lsass.exe [22528 2015-01-15] (Microsoft Corporation) [Arquivo não assinado]
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [308736 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 LanmanServer; C:\Windows\System32\srvsvc.dll [168960 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [84480 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [189952 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 lmhosts; C:\Windows\System32\lmhsvc.dll [18432 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S4 Mcx2Svc; C:\Windows\system32\Mcx2Svc.dll [68096 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 MMCSS; C:\Windows\system32\mmcss.dll [49664 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S4 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [232288 2012-03-12] ()
R2 MpsSvc; C:\Windows\system32\mpssvc.dll [566272 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 MSDTC; C:\Windows\System32\msdtc.exe [134144 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 MSiSCSI; C:\Windows\system32\iscsiexe.dll [114688 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 msiserver; C:\Windows\System32\msiexec.exe [73216 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 napagent; C:\Windows\system32\qagentRT.dll [330240 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 NetExpress Updater; C:\Program Files\AppBrad\NetExpressUpdater.exe [20568 2015-08-21] ()
S3 Netlogon; C:\Windows\system32\lsass.exe [22528 2015-01-15] (Microsoft Corporation) [Arquivo não assinado]
R3 Netman; C:\Windows\System32\netman.dll [280576 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 netprofm; C:\Windows\System32\netprofm.dll [360448 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 NlaSvc; C:\Windows\System32\nlasvc.dll [242688 2014-12-06] (Microsoft Corporation) [Arquivo não assinado]
R2 NSBU; C:\Program Files\Norton Security with Backup\Engine\22.6.0.142\NSBU.exe [289080 2016-02-26] (Symantec Corporation)
R2 nsi; C:\Windows\system32\nsisvc.dll [19456 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 NSM; C:\Program Files\Norton Family\Engine\3.5.1.17\NF.exe [364416 2016-03-11] (Symantec Corporation)
R3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [269824 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 p2psvc; C:\Windows\system32\p2psvc.dll [327680 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 PcaSvc; C:\Windows\System32\pcasvc.dll [157184 2014-07-06] (Microsoft Corporation) [Arquivo não assinado]
S3 pla; C:\Windows\system32\pla.dll [1508864 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 PlugPlay; C:\Windows\system32\umpnpmgr.dll [293376 2011-05-24] (Microsoft Corporation) [Arquivo não assinado]
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [20480 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [269824 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [350208 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 Power; C:\Windows\system32\umpo.dll [119808 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 ProfSvc; C:\Windows\system32\profsvc.dll [164864 2014-12-18] (Microsoft Corporation) [Arquivo não assinado]
S3 ProtectedStorage; C:\Windows\system32\lsass.exe [22528 2015-01-15] (Microsoft Corporation) [Arquivo não assinado]
S3 QWAVE; C:\Windows\system32\qwave.dll [210944 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 RasAuto; C:\Windows\System32\rasauto.dll [90624 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 RasMan; C:\Windows\System32\rasmans.dll [286208 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [75264 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 RemoteRegistry; C:\Windows\system32\regsvc.dll [112640 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [43520 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 RpcLocator; C:\Windows\system32\locator.exe [9216 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 RpcSs; C:\Windows\system32\rpcss.dll [376832 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 SamSs; C:\Windows\system32\lsass.exe [22528 2015-01-15] (Microsoft Corporation) [Arquivo não assinado]
R2 SCardSvr; C:\Windows\System32\SCardSvr.dll [132608 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 Schedule; C:\Windows\system32\schedsvc.dll [750592 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [67584 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S4 scpVista; C:\Program Files\Scpad\scpVista.exe [360640 2013-01-20] (Banco Bradesco S.A.) [Arquivo não assinado]
S3 SDRSVC; C:\Windows\System32\SDRSVC.dll [125952 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 seclogon; C:\Windows\system32\seclogon.dll [21504 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 SENS; C:\Windows\system32\sens.dll [49664 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [25088 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 SessionEnv; C:\Windows\system32\sessenv.dll [113664 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S2 SharedAccess; C:\Windows\System32\ipnathlp.dll [300544 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [328192 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S4 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
S3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [12800 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 Spooler; C:\Windows\System32\spoolsv.exe [317440 2012-02-11] (Microsoft Corporation) [Arquivo não assinado]
R2 sppsvc; C:\Windows\system32\sppsvc.exe [3179520 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 sppuinotify; C:\Windows\system32\sppuinotify.dll [53760 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [162816 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 SstpSvc; C:\Windows\system32\sstpsvc.dll [90112 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 StiSvc; C:\Windows\System32\wiaservc.dll [463360 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 swprv; C:\Windows\System32\swprv.dll [313856 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 SysMain; C:\Windows\system32\sysmain.dll [1159168 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 TabletInputService; C:\Windows\System32\TabSvc.dll [73216 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 TampMon; C:\Program Files\Norton Family\Engine\3.5.1.17\TampMon.exe [315192 2016-03-11] (Symantec Corporation)
R3 TapiSrv; C:\Windows\System32\tapisrv.dll [242176 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 TBS; C:\Windows\System32\tbssvc.dll [55808 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 TermService; C:\Windows\System32\termsrv.dll [523776 2014-10-13] (Microsoft Corporation) [Arquivo não assinado]
R2 Themes; C:\Windows\system32\themeservice.dll [37376 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 THREADORDER; C:\Windows\system32\mmcss.dll [49664 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 TrkWks; C:\Windows\System32\trkwks.dll [77312 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [204800 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [35840 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 upnphost; C:\Windows\System32\upnphost.dll [266752 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 UxSms; C:\Windows\System32\uxsms.dll [29696 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 VaultSvc; C:\Windows\system32\lsass.exe [22528 2015-01-15] (Microsoft Corporation) [Arquivo não assinado]
S3 vds; C:\Windows\System32\vds.exe [453632 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 VSS; C:\Windows\system32\vssvc.exe [1025536 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 W32Time; C:\Windows\system32\w32time.dll [288768 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S4 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [518968 2014-07-12] (GAS Tecnologia LTDA)
S3 wbengine; C:\Windows\system32\wbengine.exe [1203200 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [151552 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [276992 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [32768 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [76288 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 WdiSystemHost; C:\Windows\system32\wdi.dll [76288 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 WebClient; C:\Windows\System32\webclnt.dll [205824 2013-07-04] (Microsoft Corporation) [Arquivo não assinado]
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [147968 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [61440 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 WerSvc; C:\Windows\System32\WerSvc.dll [65024 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) [Arquivo não assinado]
R3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [351232 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [168960 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 WinRM; C:\Windows\system32\WsmSvc.dll [1177088 2014-10-02] (Microsoft Corporation) [Arquivo não assinado]
S3 Wlansvc; C:\Windows\System32\wlansvc.dll [829440 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [136192 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1121792 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 WPCSvc; C:\Windows\System32\wpcsvc.dll [10752 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [85504 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 wscsvc; C:\Windows\system32\wscsvc.dll [73728 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S2 WSearch; C:\Windows\system32\SearchIndexer.exe [427520 2011-05-04] (Microsoft Corporation) [Arquivo não assinado]
R3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [73216 2012-07-26] (Microsoft Corporation) [Arquivo não assinado]
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [185344 2014-01-27] (Microsoft Corporation) [Arquivo não assinado]

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

S3 1394ohci; C:\Windows\system32\drivers\1394ohci.sys [164864 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 AcpiPmi; C:\Windows\system32\drivers\acpipmi.sys [10240 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R1 AFD; C:\Windows\system32\drivers\afd.sys [338944 2014-05-30] (Microsoft Corporation) [Arquivo não assinado]
R3 AKSIFDH; C:\Windows\System32\DRIVERS\aksifdh.sys [48296 2008-07-29] (Aladdin Knowledge Systems, Ltd.)
S3 AmdK8; C:\Windows\system32\DRIVERS\amdk8.sys [55296 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 AmdPPM; C:\Windows\system32\DRIVERS\amdppm.sys [52736 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 AppID; C:\Windows\system32\drivers\appid.sys [50176 2014-08-18] (Microsoft Corporation) [Arquivo não assinado]
S3 AsyncMac; C:\Windows\System32\DRIVERS\asyncmac.sys [17920 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 AVerA706; C:\Windows\System32\DRIVERS\AVerA706.sys [1171328 2009-11-18] (AVerMedia TECHNOLOGIES, Inc.) [Arquivo não assinado]
S3 b06bdrv; C:\Windows\system32\DRIVERS\bxvbdx.sys [430080 2009-07-13] (Broadcom Corporation) [Arquivo não assinado]
S3 b57nd60x; C:\Windows\System32\DRIVERS\b57nd60x.sys [229888 2009-07-13] (Broadcom Corporation) [Arquivo não assinado]
R1 Beep; C:\Windows\system32\Drivers\Beep.sys [6144 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 BHDrvx86; C:\Program Files\Norton Security with Backup\NortonData\22.5.4.24\Definitions\BASHDefs\20160401.001\BHDrvx86.sys [1269488 2016-03-03] (Symantec Corporation)
R1 blbdrive; C:\Windows\system32\DRIVERS\blbdrive.sys [35328 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [69632 2011-02-23] (Microsoft Corporation) [Arquivo não assinado]
S3 BrFiltLo; C:\Windows\system32\DRIVERS\BrFiltLo.sys [13568 2009-07-13] (Brother Industries, Ltd.) [Arquivo não assinado]
S3 BrFiltUp; C:\Windows\system32\DRIVERS\BrFiltUp.sys [5248 2009-07-13] (Brother Industries, Ltd.) [Arquivo não assinado]
S3 BridgeMP; C:\Windows\System32\DRIVERS\bridge.sys [78336 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 Brserid; C:\Windows\System32\Drivers\Brserid.sys [272128 2009-07-13] (Brother Industries Ltd.) [Arquivo não assinado]
S3 BrSerWdm; C:\Windows\System32\Drivers\BrSerWdm.sys [62336 2009-07-13] (Brother Industries Ltd.) [Arquivo não assinado]
S3 BrUsbMdm; C:\Windows\System32\Drivers\BrUsbMdm.sys [12160 2009-07-13] (Brother Industries Ltd.) [Arquivo não assinado]
S3 BrUsbSer; C:\Windows\System32\Drivers\BrUsbSer.sys [11904 2009-07-13] (Brother Industries Ltd.) [Arquivo não assinado]
S3 BTHMODEM; C:\Windows\system32\DRIVERS\bthmodem.sys [56320 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 ccSet_NSBU; C:\Windows\system32\drivers\NSBU\1606000.08E\ccSetx86.sys [137456 2015-09-23] (Symantec Corporation)
R1 ccSet_NSM; C:\Windows\system32\drivers\NSM\0305010.011\ccSetx86.sys [128728 2015-06-03] (Symantec Corporation)
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [70656 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 cdrom; C:\Windows\System32\DRIVERS\cdrom.sys [108544 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 circlass; C:\Windows\system32\DRIVERS\circlass.sys [37888 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 CmBatt; C:\Windows\system32\DRIVERS\CmBatt.sys [14080 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 CompositeBus; C:\Windows\system32\drivers\CompositeBus.sys [31232 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [78336 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R1 discache; C:\Windows\System32\drivers\discache.sys [32256 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 drmkaud; C:\Windows\system32\drivers\drmkaud.sys [5120 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 ebdrv; C:\Windows\system32\DRIVERS\evbdx.sys [3100160 2009-07-13] (Broadcom Corporation) [Arquivo não assinado]
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [389968 2016-02-04] (Symantec Corporation)
U3 EraserUtilDrv11520; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11520.sys [125264 2016-02-04] (Symantec Corporation)
S3 ErrDev; C:\Windows\system32\drivers\errdev.sys [7168 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 exfat; C:\Windows\system32\Drivers\exfat.sys [142336 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 fastfat; C:\Windows\system32\Drivers\fastfat.sys [148480 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 fdc; C:\Windows\system32\DRIVERS\fdc.sys [25088 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [28160 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 flpydisk; C:\Windows\system32\DRIVERS\flpydisk.sys [19968 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R0 GbpKm; C:\Windows\System32\drivers\gbpkm.sys [47192 2014-07-21] (GAS Tecnologia)
S3 hcw85cir; C:\Windows\system32\drivers\hcw85cir.sys [26624 2009-07-13] (Hauppauge Computer Works, Inc.) [Arquivo não assinado]
S3 HdAudAddService; C:\Windows\system32\drivers\HdAudio.sys [304128 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 HDAudBus; C:\Windows\system32\drivers\HDAudBus.sys [108544 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 HECI; C:\Windows\system32\DRIVERS\HECI.sys [41088 2010-04-15] (Intel Corporation) [Arquivo não assinado]
S3 HidBatt; C:\Windows\system32\DRIVERS\HidBatt.sys [21504 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 HidBth; C:\Windows\system32\DRIVERS\hidbth.sys [91136 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 HidIr; C:\Windows\system32\DRIVERS\hidir.sys [37888 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 HidUsb; C:\Windows\System32\DRIVERS\hidusb.sys [24064 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [513536 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 i8042prt; C:\Windows\system32\drivers\i8042prt.sys [80896 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 IDSVix86; C:\Program Files\Norton Security with Backup\NortonData\22.5.4.24\Definitions\IPSDefs\20160404.001\IDSvix86.sys [580344 2016-02-25] (Symantec Corporation)
R3 igfx; C:\Windows\System32\DRIVERS\igdkmd32.sys [9024512 2010-08-25] (Intel Corporation) [Arquivo não assinado]
R3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [200192 2009-09-25] (Intel(R) Corporation) [Arquivo não assinado]
R3 intelppm; C:\Windows\system32\DRIVERS\intelppm.sys [53760 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [58880 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 IPMIDRV; C:\Windows\system32\drivers\IPMIDrv.sys [65536 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [101888 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [13824 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 kbdhid; C:\Windows\system32\drivers\kbdhid.sys [28160 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 lltdio; C:\Windows\System32\DRIVERS\lltdio.sys [48128 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 luafv; C:\Windows\system32\drivers\luafv.sys [86528 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 Modem; C:\Windows\System32\drivers\modem.sys [31744 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 monitor; C:\Windows\System32\DRIVERS\monitor.sys [23552 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 mouhid; C:\Windows\System32\DRIVERS\mouhid.sys [26112 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [60416 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [116224 2014-12-18] (Microsoft Corporation) [Arquivo não assinado]
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [123904 2011-04-26] (Microsoft Corporation) [Arquivo não assinado]
R3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [223744 2011-07-08] (Microsoft Corporation) [Arquivo não assinado]
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [96768 2011-04-26] (Microsoft Corporation) [Arquivo não assinado]
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [4096 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [8320 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [5888 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [5504 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [6144 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 MTConfig; C:\Windows\system32\DRIVERS\MTConfig.sys [12288 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [267264 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 NAVENG; C:\Program Files\Norton Security with Backup\NortonData\22.5.4.24\Definitions\VirusDefs\20160404.039\NAVENG.SYS [104440 2015-10-16] (Symantec Corporation)
R3 NAVEX15; C:\Program Files\Norton Security with Backup\NortonData\22.5.4.24\Definitions\VirusDefs\20160404.039\NAVEX15.SYS [1647216 2015-10-16] (Symantec Corporation)
S3 NdisCap; C:\Windows\System32\DRIVERS\ndiscap.sys [27136 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 ndisrd; C:\Windows\System32\DRIVERS\gbpndisrdn.sys [29400 2014-05-02] (GAS Tecnologia)
R3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [20992 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [46080 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 NdisWan; C:\Windows\System32\DRIVERS\ndiswan.sys [118784 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 NDProxy; C:\Windows\system32\Drivers\NDProxy.sys [48640 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl.sys [18944 2014-07-15] (Apple Inc.) [Arquivo não assinado]
R1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [36352 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [187904 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R1 Npfs; C:\Windows\system32\Drivers\Npfs.sys [35328 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [16896 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 Null; C:\Windows\system32\Drivers\Null.sys [4608 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 ohci1394; C:\Windows\system32\drivers\ohci1394.sys [62464 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 Parport; C:\Windows\system32\DRIVERS\parport.sys [79360 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [8704 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [593920 2014-07-06] (Microsoft Corporation) [Arquivo não assinado]
R3 PositivoAudioDriverWdm; C:\Windows\System32\DRIVERS\pad.sys [54544 2010-11-09] ()
R3 PptpMiniport; C:\Windows\System32\DRIVERS\raspptp.sys [73728 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 Processor; C:\Windows\system32\DRIVERS\processr.sys [52224 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 Psched; C:\Windows\System32\DRIVERS\pacer.sys [104448 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [31744 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [11776 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 RasAgileVpn; C:\Windows\System32\DRIVERS\AgileVpn.sys [49152 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 Rasl2tp; C:\Windows\System32\DRIVERS\rasl2tp.sys [78848 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [77824 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 RasSstp; C:\Windows\System32\DRIVERS\rassstp.sys [75264 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [242688 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 rdpbus; C:\Windows\system32\DRIVERS\rdpbus.sys [18944 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [6656 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R1 RDPENCDD; C:\Windows\System32\drivers\rdpencdd.sys [6656 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 RDPREFMP; C:\Windows\System32\drivers\rdprefmp.sys [7168 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 RDPWD; C:\Windows\system32\Drivers\RDPWD.sys [184320 2014-07-16] (Microsoft Corporation) [Arquivo não assinado]
R2 rspndr; C:\Windows\System32\DRIVERS\rspndr.sys [60928 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [26624 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R2 secdrv; C:\Windows\system32\Drivers\secdrv.sys [20480 2009-07-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Arquivo não assinado]
R3 Serenum; C:\Windows\system32\DRIVERS\serenum.sys [17920 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 Serial; C:\Windows\system32\DRIVERS\serial.sys [83456 2009-07-13] (Brother Industries Ltd.) [Arquivo não assinado]
S3 sermouse; C:\Windows\system32\DRIVERS\sermouse.sys [19968 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 sffdisk; C:\Windows\system32\drivers\sffdisk.sys [11264 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 sffp_mmc; C:\Windows\system32\drivers\sffp_mmc.sys [12288 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 sffp_sd; C:\Windows\system32\drivers\sffp_sd.sys [12800 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 sfloppy; C:\Windows\system32\DRIVERS\sfloppy.sys [13824 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 Smb; C:\Windows\System32\DRIVERS\smb.sys [71168 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 SRTSP; C:\Windows\System32\Drivers\NSBU\1606000.08E\SRTSP.SYS [713968 2016-02-23] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NSBU\1606000.08E\SRTSPX.SYS [44792 2015-09-23] (Symantec Corporation)
R3 srv; C:\Windows\System32\DRIVERS\srv.sys [311808 2011-04-28] (Microsoft Corporation) [Arquivo não assinado]
R3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [310272 2011-04-28] (Microsoft Corporation) [Arquivo não assinado]
R3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [114688 2011-04-28] (Microsoft Corporation) [Arquivo não assinado]
R0 SymEFASI; C:\Windows\System32\drivers\NSBU\1606000.08E\SYMEFASI.SYS [1287408 2016-02-23] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [103152 2016-02-25] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NSBU\1606000.08E\Ironx86.SYS [234736 2016-02-23] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NSBU\1606000.08E\SYMNETS.SYS [431328 2016-02-23] (Symantec Corporation)
S3 SYMRDR_{78CA3BF0-9C3B-40e1-B46D-38C877EF059A}; C:\Windows\System32\Drivers\NSM\0305010.011\SymRdrS.SYS [205560 2015-09-03] (Symantec Corporation)
R2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [35328 2012-10-03] (Microsoft Corporation) [Arquivo não assinado]
S3 TDPIPE; C:\Windows\System32\drivers\tdpipe.sys [18432 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 TDTCP; C:\Windows\System32\drivers\tdtcp.sys [24576 2012-02-17] (Microsoft Corporation) [Arquivo não assinado]
R1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [74752 2014-11-10] (Microsoft Corporation) [Arquivo não assinado]
S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [31232 2014-07-16] (Microsoft Corporation) [Arquivo não assinado]
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [52224 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 tunnel; C:\Windows\System32\DRIVERS\tunnel.sys [108544 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [246784 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R3 umbus; C:\Windows\System32\DRIVERS\umbus.sys [39936 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 UmPass; C:\Windows\system32\DRIVERS\umpass.sys [8192 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2014-07-28] (Apple, Inc.) [Arquivo não assinado]
S3 usbccgp; C:\Windows\System32\DRIVERS\usbccgp.sys [76288 2013-11-26] (Microsoft Corporation) [Arquivo não assinado]
S3 usbcir; C:\Windows\system32\drivers\usbcir.sys [86016 2013-07-12] (Microsoft Corporation) [Arquivo não assinado]
R3 usbehci; C:\Windows\System32\DRIVERS\usbehci.sys [43520 2013-11-26] (Microsoft Corporation) [Arquivo não assinado]
R3 usbhub; C:\Windows\System32\DRIVERS\usbhub.sys [258560 2013-11-26] (Microsoft Corporation) [Arquivo não assinado]
S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [20480 2013-11-26] (Microsoft Corporation) [Arquivo não assinado]
S3 usbprint; C:\Windows\System32\DRIVERS\usbprint.sys [19968 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 usbscan; C:\Windows\System32\DRIVERS\usbscan.sys [36352 2013-07-03] (Microsoft Corporation) [Arquivo não assinado]
S3 usbser; C:\Windows\System32\DRIVERS\usbser.sys [28160 2013-08-28] (Microsoft Corporation) [Arquivo não assinado]
R3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [76288 2011-03-11] (Microsoft Corporation) [Arquivo não assinado]
S3 usbuhci; C:\Windows\system32\drivers\usbuhci.sys [24064 2013-11-26] (Microsoft Corporation) [Arquivo não assinado]
S3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [146816 2013-07-12] (Microsoft Corporation) [Arquivo não assinado]
S3 usb_rndisx; C:\Windows\System32\DRIVERS\usb8023x.sys [15872 2013-02-12] (Microsoft Corporation) [Arquivo não assinado]
S3 vga; C:\Windows\System32\DRIVERS\vgapnp.sys [26112 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 VgaSave; C:\Windows\System32\drivers\vga.sys [25088 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 ViaC7; C:\Windows\system32\DRIVERS\viac7.sys [52736 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [19968 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 WacomPen; C:\Windows\system32\DRIVERS\wacompen.sys [21632 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 WANARP; C:\Windows\System32\DRIVERS\wanarp.sys [63488 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R1 Wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [63488 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
R1 WfpLwf; C:\Windows\System32\DRIVERS\wfplwf.sys [9728 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 WinUsb; C:\Windows\System32\DRIVERS\WinUSB.sys [35968 2010-11-20] (Microsoft Corporation) [Arquivo não assinado]
S3 WmiAcpi; C:\Windows\system32\drivers\wmiacpi.sys [11264 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R1 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [16384 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
R3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [66560 2012-07-25] (Microsoft Corporation) [Arquivo não assinado]
R3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [155136 2012-07-25] (Microsoft Corporation) [Arquivo não assinado]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-13] (Microsoft Corporation) [Arquivo não assinado]
S3 catchme; \??\C:\Users\MARCIO~1\AppData\Local\Temp\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Três Meses Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-05 15:10 - 2016-04-05 15:11 - 00000000 ____D C:\FRST
2016-04-05 13:30 - 2016-04-05 13:30 - 00000000 ____D C:\Users\MarcioPaula\AppData\Roaming\Corel
2016-04-05 13:28 - 2016-04-05 13:55 - 00002228 _____ C:\Users\Public\Desktop\Corel CONNECT X8.lnk
2016-04-05 13:28 - 2016-04-05 13:28 - 00000000 ____D C:\Program Files\gs
2016-04-05 13:28 - 2016-04-05 13:24 - 00002816 _____ C:\Users\Public\Desktop\Corel CAPTURE X8.lnk
2016-04-05 13:28 - 2016-04-05 13:24 - 00002147 _____ C:\Users\Public\Desktop\Corel Font Manager X8.lnk
2016-04-05 13:28 - 2016-04-05 13:23 - 00002819 _____ C:\Users\Public\Desktop\Corel PHOTO-PAINT X8.lnk
2016-04-05 13:28 - 2016-04-05 13:23 - 00002771 _____ C:\Users\Public\Desktop\CorelDRAW X8.lnk
2016-04-05 13:27 - 2016-04-05 13:27 - 00000000 ____D C:\Users\Todos os Usuários\VsTelemetry
2016-04-05 13:27 - 2016-04-05 13:27 - 00000000 ____D C:\ProgramData\VsTelemetry
2016-04-05 13:26 - 2016-04-05 13:26 - 00000000 ____D C:\Program Files\Common Files\Corel
2016-04-05 13:24 - 2016-04-05 13:24 - 00000000 ____D C:\Users\Public\Documents\Corel
2016-04-05 13:23 - 2016-04-05 13:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X8
2016-04-05 13:21 - 2016-04-05 13:38 - 00000000 ____D C:\Users\Todos os Usuários\Corel
2016-04-05 13:21 - 2016-04-05 13:38 - 00000000 ____D C:\ProgramData\Corel
2016-04-05 13:20 - 2016-04-05 13:27 - 00000000 ____D C:\Program Files\Corel
2016-04-05 13:06 - 2016-04-05 13:06 - 00003304 ____N C:\bootsqm.dat
2016-04-04 18:57 - 2016-04-04 18:59 - 00000000 ____D C:\be38046a38988f877c7fa0691effa3
2016-04-04 18:51 - 2016-04-04 18:51 - 00000000 ____D C:\Users\Todos os Usuários\UniqueId
2016-04-04 18:51 - 2016-04-04 18:51 - 00000000 ____D C:\ProgramData\UniqueId
2016-04-04 16:53 - 2016-04-04 18:20 - 00000000 ____D C:\Users\MarcioPaula\Desktop\Toyoda 0404
2016-04-01 08:55 - 2016-04-01 08:55 - 00000316 _____ C:\Users\MarcioPaula\Desktop\drlabel.ini
2016-03-31 11:53 - 2016-03-31 11:53 - 00000000 ____D C:\Program Files\Common Files\Java
2016-03-23 08:02 - 2016-03-23 09:29 - 00000000 ____D C:\Users\MarcioPaula\Desktop\Nova Toyoda 1
2016-03-22 09:05 - 2016-03-22 09:05 - 00000068 _____ C:\Users\MarcioPaula\Desktop\imoveis.txt
2016-03-21 11:30 - 2016-03-21 11:30 - 00000000 ____D C:\Users\MarcioPaula\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-03-21 11:10 - 2016-03-21 11:10 - 00007913 _____ C:\Users\MarcioPaula\Downloads\31160366344805000160550010000475311608591656-nfe.xml
2016-03-18 10:31 - 2016-03-18 10:31 - 00024730 _____ C:\Users\MarcioPaula\Desktop\10331A.pdf
2016-03-11 16:07 - 2016-03-18 15:01 - 00000000 ____D C:\Users\MarcioPaula\Desktop\Nova Toyoda
2016-03-11 15:21 - 2016-03-11 15:21 - 00001128 _____ C:\Músicas - Atalho.lnk
2016-03-02 13:56 - 2016-03-02 13:56 - 00000000 ____D C:\Users\MarcioPaula\AppData\Local\Skype
2016-02-27 10:56 - 2016-02-27 10:56 - 00000000 ____D C:\Users\MarcioPaula\AppData\Roaming\Mozilla
2016-02-27 10:56 - 2016-02-27 10:56 - 00000000 ____D C:\Users\MarcioPaula\AppData\Local\Geckofx
2016-02-27 10:55 - 2016-04-05 12:03 - 00000000 ____D C:\Program Files\AppBrad
2016-02-27 10:55 - 2016-02-27 10:56 - 00000000 ____D C:\Users\MarcioPaula\AppData\Roaming\NetExpress50
2016-02-27 10:55 - 2016-02-27 10:55 - 23855608 _____ (Copyright © 2015 Scopus Tecnologia Ltda. ) C:\Users\MarcioPaula\Downloads\Instalador (3).exe
2016-02-27 10:55 - 2016-02-27 10:55 - 00001648 _____ C:\Users\Public\Desktop\Bradesco.lnk
2016-02-27 10:55 - 2016-02-27 10:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Aplicativo Bradesco
2016-02-27 10:53 - 2016-02-27 10:53 - 23855608 _____ (Copyright © 2015 Scopus Tecnologia Ltda. ) C:\Users\MarcioPaula\Downloads\Instalador (2).exe
2016-02-27 10:50 - 2016-02-27 10:50 - 23855608 _____ (Copyright © 2015 Scopus Tecnologia Ltda. ) C:\Users\MarcioPaula\Downloads\Instalador (1).exe
2016-02-27 10:49 - 2016-02-27 10:50 - 23855608 _____ (Copyright © 2015 Scopus Tecnologia Ltda. ) C:\Users\MarcioPaula\Downloads\Instalador.exe
2016-02-25 16:54 - 2016-04-04 18:48 - 00002354 _____ C:\Users\Public\Desktop\Norton Security com Backup.LNK
2016-02-25 16:42 - 2016-03-29 08:02 - 00000000 ____D C:\Windows\system32\Drivers\NSBU
2016-02-25 16:42 - 2016-03-29 08:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security with Backup
2016-02-25 16:42 - 2016-02-25 16:42 - 00000000 ____D C:\Program Files\Norton Security with Backup
2016-02-22 18:02 - 2016-03-18 17:07 - 02315252 ____H C:\Users\MarcioPaula\AppData\Local\IconCache.db.backup
2016-02-18 11:52 - 2016-04-04 18:49 - 00000000 ____D C:\Users\MarcioPaula\Desktop\Fina Roca
2016-02-16 09:54 - 2016-03-18 10:35 - 00000000 ____D C:\Users\MarcioPaula\Desktop\Toyoda Boleto

==================== Três Meses Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-04-05 15:09 - 2012-02-21 20:29 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-05 14:27 - 2012-04-08 17:13 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-05 14:19 - 2015-06-19 11:09 - 00001054 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1270427373-3192164834-2053952482-1000UA.job
2016-04-05 13:35 - 2011-02-06 18:47 - 00134216 _____ C:\Users\MarcioPaula\AppData\Local\GDIPFONTCACHEV1.DAT
2016-04-05 13:30 - 2014-05-02 18:17 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2016-04-05 13:30 - 2014-05-02 18:17 - 00000000 ____D C:\ProgramData\GbPlugin
2016-04-05 13:27 - 2014-09-25 17:35 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-04-05 13:27 - 2014-09-25 17:35 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-05 13:26 - 2009-07-13 23:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-04-05 13:15 - 2009-07-14 01:34 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-05 13:15 - 2009-07-14 01:34 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-05 13:09 - 2014-04-08 16:49 - 00000000 ___RD C:\Users\MarcioPaula\Dropbox
2016-04-05 13:09 - 2014-04-08 16:45 - 00000000 ____D C:\Users\MarcioPaula\AppData\Roaming\Dropbox
2016-04-05 13:07 - 2015-07-30 10:58 - 00000000 ___RD C:\Users\MarcioPaula\iCloudDrive
2016-04-05 13:07 - 2012-02-21 20:29 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-05 13:07 - 2009-07-14 01:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-05 12:56 - 2011-01-08 14:02 - 01600284 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-05 12:56 - 2009-07-14 05:31 - 00705814 _____ C:\Windows\system32\prfh0416.dat
2016-04-05 12:56 - 2009-07-14 05:31 - 00147654 _____ C:\Windows\system32\prfc0416.dat
2016-04-05 12:56 - 2009-07-13 23:37 - 00000000 ____D C:\Windows\inf
2016-04-05 12:47 - 2014-08-29 18:42 - 00000952 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1270427373-3192164834-2053952482-1000UA.job
2016-04-05 12:30 - 2011-04-07 00:42 - 00000000 ____D C:\Users\MarcioPaula\AppData\LocalLow\Scpad
2016-04-05 12:03 - 2014-05-02 18:17 - 00000000 ____D C:\Program Files\GbPlugin
2016-04-05 09:19 - 2015-06-19 11:09 - 00001002 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1270427373-3192164834-2053952482-1000Core.job
2016-04-04 18:48 - 2012-09-07 06:22 - 00002090 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-04 18:47 - 2014-08-29 18:42 - 00000930 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1270427373-3192164834-2053952482-1000Core.job
2016-04-01 16:53 - 2015-01-15 14:41 - 00000000 ____D C:\uri
2016-03-31 11:54 - 2014-11-07 12:20 - 00000000 ____D C:\Program Files\Java
2016-03-31 11:53 - 2015-08-31 17:56 - 00000000 ____D C:\Users\MarcioPaula\.oracle_jre_usage
2016-03-31 11:53 - 2014-11-07 12:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-31 11:52 - 2014-11-07 12:20 - 00095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2016-03-30 19:28 - 2012-09-07 06:22 - 00002058 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-30 08:53 - 2011-02-06 19:59 - 00000000 ____D C:\Users\MarcioPaula\AppData\Local\CrashDumps
2016-03-30 08:37 - 2009-07-14 01:53 - 00032608 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-29 08:02 - 2012-04-08 17:13 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-03-29 08:02 - 2011-05-19 20:58 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-03-18 17:10 - 2014-05-05 12:50 - 00000000 ____D C:\Windows\system32\MRT
2016-03-18 17:10 - 2011-02-12 22:38 - 141270216 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-03-16 09:51 - 2015-09-01 11:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Family
2016-03-16 09:51 - 2014-11-20 09:06 - 00000000 ____D C:\Windows\system32\Drivers\NSM
2016-03-10 13:22 - 2015-11-04 11:12 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Arquivos na raiz de alguns diretórios =======

2013-12-14 06:19 - 2013-12-14 06:19 - 49940480 _____ () C:\Program Files\GUTC5F4.tmp
2011-05-28 17:02 - 2011-05-28 17:02 - 0000159 _____ () C:\Users\MarcioPaula\AppData\Roaming\default.rss
2012-07-14 08:55 - 2012-07-14 08:55 - 0000218 _____ () C:\Users\MarcioPaula\AppData\Local\recently-used.xbel
2011-02-15 23:08 - 2011-02-15 23:11 - 0000306 _____ () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\explorer.exe => MD5 é legítimo
C:\Windows\system32\winlogon.exe => MD5 é legítimo
C:\Windows\system32\wininit.exe => MD5 é legítimo
C:\Windows\system32\svchost.exe => MD5 é legítimo
C:\Windows\system32\services.exe => MD5 é legítimo
C:\Windows\system32\User32.dll
[2011-07-08 22:34] - [2010-11-20 09:21] - 0811520 ____A (Microsoft Corporation) 8626F0C30D4E3564FFDD25C90F4426F1

C:\Windows\system32\userinit.exe => MD5 é legítimo
C:\Windows\system32\rpcss.dll => MD5 é legítimo
C:\Windows\system32\dnsapi.dll => MD5 é legítimo
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-03-29 15:45

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité