cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 27-07-2016
Executado por Gustavo (administrador) em GUSTAVO-PC (29-07-2016 23:25:19)
Executando a partir de C:\Users\Gustavo\Desktop
Perfis Carregados: Gustavo (Perfis Disponíveis: Gustavo)
Platform: Windows 8.1 Pro (Update) (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processos (Whitelisted) =================

(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\naPrdMgr.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\mfeann.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.309\SSScheduler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\McTray.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Corsair Components Inc) C:\Program Files (x86)\Corsair\K30 Keyboard\K30Hid.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Corsair Components Inc) C:\Program Files (x86)\Corsair\K30 Keyboard\CorsTra.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\shstat.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registro (Whitelisted) ===========================

(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)

HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-29] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-07-05] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM-x32\...\Run: [McAfeeUpdaterUI] => C:\Program Files (x86)\McAfee\Common Framework\udaterui.exe [337440 2013-06-25] (McAfee, Inc.)
HKLM-x32\...\Run: [ShStatEXE] => C:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE [243560 2014-01-15] (McAfee, Inc.)
HKLM-x32\...\Run: [YTDownloader] => "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
HKLM-x32\...\Run: [mbot_br_380] => [X]
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [Corsair K30] => C:\Program Files (x86)\Corsair\K30 Keyboard\K30Hid.exe [1785344 2013-08-06] (Corsair Components Inc)
HKU\S-1-5-21-4188083363-4203920463-2079969242-1002\...\Run: [YTDownloader] => "C:\Program Files (x86)\YTDownloader\YTDownloader.exe" /boot
HKU\S-1-5-21-4188083363-4203920463-2079969242-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7451928 2015-03-13] (Piriform Ltd)
HKU\S-1-5-21-4188083363-4203920463-2079969242-1002\...\MountPoints2: {d6e0d08c-7507-11e5-8428-60a44caf5b8d} - "E:\startme.exe"
HKU\S-1-5-21-4188083363-4203920463-2079969242-1002\...\MountPoints2: {d866fb34-905d-11e4-8286-60a44caf5b8d} - "E:\LG_PC_Programs.exe"
AppInit_DLLs-x32: C:\Users\Gustavo\AppData\Local\Smartbar\Application\Resources\crdlil.dll => Nenhum Arquivo
ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavShx64.dll Nenhum Arquivo
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-04-01]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.309\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Gustavo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2014-12-20]
ShortcutTarget: Curse.lnk -> C:\Users\Gustavo\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc)
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO

==================== Internet (Whitelisted) ====================

(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)

Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 201.17.128.79 201.17.128.74
Tcpip\..\Interfaces\{0158BC3E-1B68-4860-B0FF-C4A6A8A01829}: [DhcpNameServer] 201.17.128.79 201.17.128.74
Tcpip\..\Interfaces\{6B7F9C20-2A3D-438F-AC41-1C86BA434B5F}: [DhcpNameServer] 201.17.128.79 201.17.128.74
Tcpip\..\Interfaces\{8C3E9BCB-08DA-451A-AF67-1F0450A02420}: [DhcpNameServer] 201.17.128.79 201.17.128.74
Tcpip\..\Interfaces\{D42E3B18-FB49-429A-8578-07E779154E0E}: [DhcpNameServer] 201.17.128.108 201.17.128.102 201.6.4.116

Internet Explorer:
==================
HKU\S-1-5-21-4188083363-4203920463-2079969242-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://istart.webssearches.com/web/?type=ds&ts=1419282550&from=brd&uid=ST2000DL003-9VT166_5YD1V9TTXXXX5YD1V9TT&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.delta-homes.com/?type=hp&ts=1427437081&from=wpm032731&uid=ST2000DL003-9VT166_5YD1V9TTXXXX5YD1V9TT
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1419282550&from=brd&uid=ST2000DL003-9VT166_5YD1V9TTXXXX5YD1V9TT&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-4188083363-4203920463-2079969242-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRa0T-NJ1bNV5iGB7j76kR7EOZGkeQkbUBqM5kBv_j3037afZCKp1RcIuZphBHvArCegP0GoxvrrdkNmvRkn3tLR9R5PDutryw3-Me6WZ0l1m9tkCbCbMABfmX8t8W48g6BO9-eKA_-DmPcUDjkGJXhP5c1reTV4QZJ9P_1-jXmgIOu1oEtDmdgyvcQ,,&q={searchTerms}
HKU\S-1-5-21-4188083363-4203920463-2079969242-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRa0T-NJ1bNV5iGB7j76kR7EOZGkeQkbUBqM5kBv_j3037afZCKp1RcIuZphBHvArCegP0GoxvrrdkNmvRkn3tLR9R5PDutryw3-Me6WZ0l1m9tkCbCbMABfmX8t8W48g6BO9-eKA_-DmPcUDjkGJXhP5c1reTV4QZJ9P_1-jXmgIOu1oEtDmdgyvcQ,,&q={searchTerms}
SearchScopes: HKU\S-1-5-21-4188083363-4203920463-2079969242-1002 -> DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL =
SearchScopes: HKU\S-1-5-21-4188083363-4203920463-2079969242-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.delta-homes.com/web/?utm_source=b&utm_medium=wpm032731&utm_campaign=install_ie&utm_content=ds&from=wpm032731&uid=ST2000DL003-9VT166_5YD1V9TTXXXX5YD1V9TT&ts=1427437103&type=default&q={searchTerms}
BHO: Sem Nome -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> Nenhum Arquivo
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Sem Nome -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> Nenhum Arquivo
BHO-x32: Sem Nome -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> Nenhum Arquivo
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-12-15] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-01-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-15] (Oracle Corporation)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2014-04-20] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2014-04-20] (IvoSoft)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-01-23] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1419282550&from=brd&uid=ST2000DL003-9VT166_5YD1V9TTXXXX5YD1V9TT

FireFox:
========
FF ProfilePath: C:\Users\Gustavo\AppData\Roaming\Mozilla\Firefox\Profiles\0rjal086.default
FF NewTab: chrome://quick_start/content/index.html
FF DefaultSearchEngine: delta-homes
FF SelectedSearchEngine: delta-homes
FF Homepage: google.com
FF Keyword.URL: hxxp://feed.helperbar.com/?p=mKO_AwFzXIpYRa0T-NJ1bNV5iGB7j76kR7EOZGkeQkbUBqM5kBv_j3037afZCKp1RcIuZphBHvArCegP0GoxvrrdkNmvRkn3tLR9R5PDutryw3-Me6WZ0l1m9tkCbCbMABfmX8t8W48g6BO9-eKA_-DmPcUDjkGJXhP5c1reTV4QZJ9P_1-jXmgIOu1oEtDmdgyvcQ,,&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-16] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-16] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2014-06-19] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-12-15] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-12-15] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll [2014-02-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-06-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-06-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF SearchPlugin: C:\Users\Gustavo\AppData\Roaming\Mozilla\Firefox\Profiles\0rjal086.default\searchplugins\delta-homes.xml [2015-04-04]
FF SearchPlugin: C:\Users\Gustavo\AppData\Roaming\Mozilla\Firefox\Profiles\0rjal086.default\searchplugins\Web Search.xml [2014-12-22]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\buscape.xml [2015-04-03]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mercadolivre.xml [2015-04-03]
FF Extension: Adblock Plus - C:\Users\Gustavo\AppData\Roaming\Mozilla\Firefox\Profiles\0rjal086.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-04-04] [não assinado]
FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25]
FF HKLM-x32\...\Firefox\Extensions: [searchengine@gmail.com] - C:\Users\Gustavo\AppData\Roaming\Mozilla\Firefox\Profiles\0rjal086.default\extensions\searchengine@gmail.com => não encontrado (a)
FF HKLM-x32\...\Firefox\Extensions: [istart_ffnt@gmail.com] - C:\Users\Gustavo\AppData\Roaming\Mozilla\Firefox\Profiles\0rjal086.default\extensions\istart_ffnt@gmail.com => não encontrado (a)

Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com.br/
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Session Restore: Default -> está habilitado.
CHR Profile: C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-20]
CHR Extension: (Pulsate) - C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjilkkfelgjefpjbjfnfdhmmoglpbhli [2015-03-27]
CHR Extension: (YouTube) - C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Adblock Plus) - C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-06-29]
CHR Extension: (Google Search) - C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Documentos Google off-line) - C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-14]
CHR Extension: (AdBlock) - C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-28]
CHR Extension: (ZenCast) - C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hncgklnmcokagjlmdkjneiabailabkop [2015-03-27]
CHR Extension: (Night Time In New York City) - C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnimonidkipnhnpgkhgliocfnnpgkhek [2015-04-04]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-01]
CHR Extension: (Gmail) - C:\Users\Gustavo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25]

==================== Serviços (Whitelisted) ========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-29] (NVIDIA Corporation)
R2 McAfeeFramework; C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe [130080 2013-06-25] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.309\McCHSvc.exe [293128 2016-03-11] (McAfee, Inc.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [242448 2014-12-15] (McAfee, Inc.)
R2 McTaskManager; C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe [208416 2014-01-15] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [185280 2014-12-15] (McAfee, Inc.)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3916368 2016-01-09] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-29] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-29] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-07-08] (Electronic Arts)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5419792 2014-11-28] (TeamViewer GmbH)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2015-10-19] (Popcorn Time) [Arquivo não assinado]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [742864 2016-03-21] (Wacom Technology, Corp.)

===================== Drivers (Whitelisted) ==========================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)

R3 CORK30; C:\Windows\system32\drivers\CORK30.sys [25600 2013-06-07] ( )
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [180272 2014-12-15] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311600 2014-12-15] (McAfee, Inc.)
U3 mfeavfk01; não ImagePath
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69344 2014-12-15] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782968 2014-12-15] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [107032 2014-12-15] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344176 2014-12-15] (McAfee, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-29] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [46016 2016-06-29] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-06-29] (NVIDIA Corporation)
R3 RtlWlanu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1975000 2013-07-31] (Realtek Semiconductor Corporation )
R3 WacHidRouterPro; C:\Windows\System32\drivers\wachidrouter.sys [102864 2016-03-02] (Wacom Technology)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [35320 2014-09-21] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [258368 2014-09-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)


==================== Um Mês Criados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-29 23:25 - 2016-07-29 23:25 - 00024452 _____ C:\Users\Gustavo\Desktop\FRST.txt
2016-07-29 23:23 - 2016-07-29 23:24 - 00040132 _____ C:\Users\Gustavo\Downloads\Addition.txt
2016-07-29 23:21 - 2016-07-29 23:25 - 00000000 ____D C:\FRST
2016-07-29 23:21 - 2016-07-29 23:24 - 00040572 _____ C:\Users\Gustavo\Downloads\FRST.txt
2016-07-29 23:20 - 2016-07-29 23:20 - 02394112 _____ (Farbar) C:\Users\Gustavo\Desktop\FRST64.exe
2016-07-29 20:55 - 2016-07-29 23:20 - 00000000 ____D C:\Users\Gustavo\AppData\Local\CrashDumps
2016-07-29 20:46 - 2016-07-29 23:22 - 00002188 _____ C:\Users\Gustavo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\McAfee VirusScan Scan Messages.lnk
2016-07-27 21:18 - 2016-07-27 21:18 - 00001765 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-07-27 21:18 - 2016-07-27 21:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-07-27 21:17 - 2016-07-27 21:18 - 00000000 ____D C:\Program Files\iTunes
2016-07-27 21:17 - 2016-07-27 21:17 - 00000000 ____D C:\Program Files\iPod
2016-07-27 21:17 - 2016-07-27 21:17 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-07-24 15:47 - 2016-07-24 15:47 - 00097592 _____ C:\Users\Gustavo\Downloads\arquivo (8).pdf
2016-07-14 16:37 - 2016-07-14 16:37 - 00099498 _____ C:\Users\Gustavo\Downloads\arquivo (7).pdf
2016-07-12 13:24 - 2016-06-29 19:44 - 00112216 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-07-12 13:23 - 2016-07-12 13:23 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-07-12 13:23 - 2016-06-29 15:02 - 00111552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-07-12 13:23 - 2016-05-03 23:23 - 00129824 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-07-12 13:23 - 2016-05-03 23:22 - 00130848 _____ C:\Windows\system32\vulkan-1.dll
2016-07-12 13:23 - 2016-05-03 23:22 - 00045344 _____ C:\Windows\system32\vulkaninfo.exe
2016-07-12 13:23 - 2016-05-03 23:22 - 00040224 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-07-12 13:22 - 2016-06-29 15:36 - 00532416 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-07-12 13:22 - 2016-06-29 15:36 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-07-12 13:21 - 2016-07-12 13:24 - 00000000 ____D C:\Windows\LastGood
2016-07-12 13:21 - 2016-06-29 19:44 - 39979576 _____ C:\Windows\system32\nvcompiler.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 35115968 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 31626808 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 25402424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 17302264 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 16774904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 14356952 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 13523392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-07-12 13:21 - 2016-06-29 19:44 - 10672752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 10656296 _____ C:\Windows\system32\nvptxJitCompiler.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 10214760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 09006760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 08742032 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 08600904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 03513400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 03067448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436869.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436869.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00984000 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00909248 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00878816 _____ C:\Windows\system32\nvmcumd.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00771640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00707520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00669952 _____ C:\Windows\system32\nvfatbinaryLoader.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00565392 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00502080 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00476664 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00425016 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00422752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00394912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00379448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00214592 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-07-12 13:21 - 2016-06-29 19:44 - 00178136 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00155768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00153416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00131768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00126008 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00102976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00056384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-07-12 13:21 - 2016-06-29 19:44 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-07-12 13:21 - 2016-06-29 19:44 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2016-07-12 13:21 - 2016-06-29 19:44 - 00000594 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-07-12 13:21 - 2016-06-29 19:44 - 00000594 _____ C:\Windows\system32\nv-vk64.json
2016-07-12 13:15 - 2016-07-12 13:18 - 348045000 _____ (NVIDIA Corporation) C:\Users\Gustavo\Downloads\368.69-desktop-win8-win7-winvista-64bit-international-whql.exe
2016-07-09 12:16 - 2016-07-09 14:42 - 00000000 ____D C:\Users\Gustavo\Documents\Mirrors Edge Catalyst
2016-07-09 08:24 - 2016-07-09 08:24 - 00001332 _____ C:\Users\Public\Desktop\Mirror's Edge™ Catalyst.lnk
2016-07-09 08:24 - 2016-07-09 08:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirror's Edge™ Catalyst
2016-07-08 14:54 - 2016-07-08 14:54 - 00026179 _____ C:\Users\Gustavo\Downloads\boleto_47350178-E8DF-4FA7-9D5D-A9C722CE30C6.pdf
2016-07-08 13:54 - 2016-07-09 03:12 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-07-08 13:51 - 2016-07-09 13:38 - 00000000 ____D C:\Users\Gustavo\AppData\Roaming\Origin
2016-07-08 13:51 - 2016-07-09 12:15 - 00000000 ____D C:\Users\Gustavo\AppData\Local\Origin
2016-07-08 13:48 - 2016-07-13 06:36 - 00000000 ____D C:\Users\Todos os Usuários\Origin
2016-07-08 13:48 - 2016-07-13 06:36 - 00000000 ____D C:\ProgramData\Origin
2016-07-08 13:48 - 2016-07-09 12:15 - 00000000 ____D C:\Users\Todos os Usuários\Electronic Arts
2016-07-08 13:48 - 2016-07-09 12:15 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-07-08 13:48 - 2016-07-08 13:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-07-08 13:47 - 2016-07-08 13:51 - 00000000 ____D C:\Program Files (x86)\Origin
2016-07-08 13:46 - 2016-07-08 13:46 - 31395368 _____ (Electronic Arts, Inc.) C:\Users\Gustavo\Downloads\OriginThinSetup.exe
2016-07-04 05:46 - 2016-07-04 05:46 - 03713028 _____ C:\Users\Gustavo\Downloads\456986 Komiya Mao - (can you) understand me.osz

==================== Um Mês Modificados arquivos e pastas ========

(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)

2016-07-29 23:22 - 2014-12-15 20:12 - 00000000 ____D C:\QUARANTINE
2016-07-29 23:20 - 2014-12-15 19:52 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-29 22:41 - 2015-01-19 04:38 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-29 22:41 - 2015-01-19 04:38 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-29 21:01 - 2014-12-11 20:47 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4188083363-4203920463-2079969242-1002
2016-07-29 20:45 - 2014-12-11 21:15 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA
2016-07-29 20:45 - 2014-12-11 21:15 - 00000000 ____D C:\ProgramData\NVIDIA
2016-07-29 20:45 - 2013-08-22 11:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-29 03:13 - 2014-12-11 21:27 - 00000000 ____D C:\Users\Gustavo\AppData\Roaming\ClassicShell
2016-07-28 23:46 - 2014-12-15 19:46 - 00000000 ____D C:\Users\Gustavo\AppData\Roaming\Skype
2016-07-28 22:36 - 2015-01-19 04:38 - 00004070 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-28 22:36 - 2015-01-19 04:38 - 00003834 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-27 21:17 - 2014-12-30 16:40 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-07-27 03:30 - 2013-08-22 10:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-07-26 21:47 - 2013-08-22 10:36 - 00000000 ____D C:\Windows\Inf
2016-07-26 21:35 - 2013-08-22 10:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2016-07-24 00:48 - 2015-01-17 14:42 - 00000000 ____D C:\Windows\Minidump
2016-07-22 16:03 - 2014-03-18 07:33 - 01797166 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-22 16:03 - 2014-03-18 06:45 - 00774702 _____ C:\Windows\system32\prfh0416.dat
2016-07-22 16:03 - 2014-03-18 06:45 - 00158296 _____ C:\Windows\system32\prfc0416.dat
2016-07-19 00:30 - 2015-12-17 15:49 - 00000000 ____D C:\Users\Todos os Usuários\69B6DBD2-8E05-476F-B662-CF8D235FD499
2016-07-19 00:30 - 2015-12-17 15:49 - 00000000 ____D C:\ProgramData\69B6DBD2-8E05-476F-B662-CF8D235FD499
2016-07-17 12:04 - 2016-02-19 00:38 - 00000000 ____D C:\Users\Gustavo\AppData\Local\osu!
2016-07-17 11:40 - 2014-12-15 21:10 - 00000000 ____D C:\Users\Gustavo\Desktop\Games
2016-07-15 03:11 - 2014-12-15 20:29 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-07-14 22:14 - 2014-12-30 16:34 - 00000000 ____D C:\Users\Gustavo\Desktop\notas
2016-07-12 13:25 - 2015-06-03 20:12 - 00000000 ____D C:\Users\Gustavo\AppData\Local\NVIDIA Corporation
2016-07-12 13:24 - 2015-09-27 22:13 - 00000000 ____D C:\Temp
2016-07-12 13:24 - 2015-06-03 20:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-07-12 13:24 - 2014-12-11 21:03 - 00000000 ____D C:\Users\Todos os Usuários\NVIDIA Corporation
2016-07-12 13:24 - 2014-12-11 21:03 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-07-12 13:22 - 2014-12-11 21:03 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-07-10 04:53 - 2014-12-11 20:42 - 00000000 ____D C:\Users\Gustavo
2016-07-09 08:23 - 2015-06-02 02:27 - 00000000 ____D C:\Users\Todos os Usuários\Package Cache
2016-07-09 08:23 - 2015-06-02 02:27 - 00000000 ____D C:\ProgramData\Package Cache
2016-07-09 03:11 - 2014-12-15 20:56 - 00000000 ____D C:\Program Files (x86)\Steam
2016-07-03 21:41 - 2015-12-16 20:54 - 00000000 ____D C:\Users\Gustavo\Desktop\musica
2016-07-01 23:01 - 2015-01-18 15:49 - 00000000 ____D C:\Users\Gustavo\Desktop\Para jogar de novo
2016-07-01 23:01 - 2014-12-11 20:42 - 00000000 ____D C:\Users\Gustavo\AppData\Local\VirtualStore
2016-06-29 19:44 - 2015-06-03 20:12 - 01767944 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-06-29 19:44 - 2015-06-03 20:12 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-06-29 19:44 - 2015-06-03 20:12 - 01377800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-06-29 19:44 - 2015-06-03 20:12 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-06-29 19:44 - 2015-06-03 20:10 - 03828968 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-06-29 19:44 - 2015-06-03 20:10 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2016-06-29 19:44 - 2015-06-03 20:10 - 00113216 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-06-29 19:44 - 2014-12-20 13:39 - 01579976 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-06-29 19:44 - 2014-08-19 21:15 - 19199216 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-06-29 19:44 - 2014-08-19 21:14 - 00039124 _____ C:\Windows\system32\nvinfo.pb
2016-06-29 19:44 - 2014-08-19 21:13 - 03387080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-06-29 15:36 - 2014-12-11 21:09 - 06364728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-06-29 15:36 - 2014-12-11 21:09 - 02455608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-06-29 15:36 - 2014-12-11 21:09 - 01762752 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-06-29 15:36 - 2014-12-11 21:09 - 01352760 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-06-29 15:36 - 2014-12-11 21:09 - 00393784 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-06-29 15:36 - 2014-12-11 21:09 - 00069568 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll

==================== Arquivos na raiz de alguns diretórios =======

2014-12-22 17:51 - 2014-12-22 17:51 - 1815520 _____ (Object Browser) C:\Users\Gustavo\AppData\Roaming\BHBSOGMJ.exe
2014-12-22 17:54 - 2014-12-22 17:54 - 1487840 _____ (HDPlus2.6dV22.12) C:\Users\Gustavo\AppData\Roaming\IJXCCN.exe
2014-12-22 17:54 - 2014-12-22 17:54 - 1815520 _____ (HDPlus2.6dV22.12) C:\Users\Gustavo\AppData\Roaming\RLHZLL.exe
2014-12-22 18:24 - 2014-12-22 18:24 - 0000227 _____ () C:\ProgramData\bc.ini

Arquivos para serem movidos ou deletados:
====================
C:\Users\Gustavo\Ammyy Admin3.4.exe


==================== Bamital & volsnap =================

(Não há correção automática para arquivos que não passaram na verificação.)

C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente


LastRegBack: 2016-07-29 02:19

==================== Fim de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité