Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão: 17-09-2017
Executado por bibi_ (administrador) em DESKTOP-2IMCRLA (17-09-2017 16:50:38)
Executando a partir de C:\Users\bibi_\Desktop
Perfis Carregados: bibi_ (Perfis Disponíveis: bibi_)
Platform: Windows 10 Home Single Language Versão 1703 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
() C:\Windows\KMS-R@1n.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradserv.exe
(Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Box, Inc.) C:\Program Files\Box\Box Sync\BoxSync.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\Bluestacks\HD-Agent.exe
(Facebook) C:\Users\bibi_\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files\Box\Box Sync\BoxSyncMonitor.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(The CefSharp Authors) C:\Users\bibi_\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
() C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
(Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8495320 2015-06-23] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3877936 2015-06-12] (Dell Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [611248 2015-05-26] (Waves Audio Ltd.)
HKLM\...\Run: [BoxSync] => C:\Program Files\Box\Box Sync\BoxSync.exe [5088872 2017-08-07] (Box, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3487032 2017-09-14] (Dropbox, Inc.)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [986648 2016-09-21] (BlueStack Systems, Inc.)
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [40257336 2017-08-31] ()
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9855192 2017-09-07] (Piriform Ltd)
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\Bluestacks\HD-Agent.exe [986648 2016-09-21] (BlueStack Systems, Inc.)
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\...\Run: [GoogleChromeAutoLaunch_7011F00F597C135D390B550D614D426E] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1301848 2017-08-23] (Google Inc.)
IFEO\OSppSvc.exe: [Debugger] KMS-R@1nHook.exe
IFEO\SppExtComObj.exe: [Debugger] KMS-R@1nHook.exe
Startup: C:\Users\bibi_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-06-09]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\bibi_\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
Startup: C:\Users\bibi_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-01-20]
ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited)
GroupPolicy: Restrição <==== ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
ProxyServer: [S-1-5-21-1849708004-2261678134-3419513933-1001] => proxy.ima.sp.gov.br:3128
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a2c33670-c902-4e0b-8b0e-6da875718492}: [DhcpNameServer] 10.42.0.251 10.42.0.252
Tcpip\..\Interfaces\{a3c13200-d2cb-4ecf-bbf7-041e9ee246af}: [DhcpNameServer] 172.21.0.197 172.21.0.198
Tcpip\..\Interfaces\{ba7e5809-1f84-464c-a002-ee43f01749e4}: [DhcpNameServer] 172.21.0.197 172.21.0.198
Tcpip\..\Interfaces\{bf4a6862-b2e6-4317-8466-0c9d810f9be5}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{e947a716-ef47-4f91-9ded-222f2e43b08a}: [DhcpNameServer] 172.21.0.197 172.21.0.198
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131192275475577906&GUID=81BBAF52-512E-46A9-926D-8E04811BB6FC
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://blu181.mail.live.com/?fid=flinbox
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell15.msn.com/?pc=DCTE
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://it-mg42.mail.yahoo.com/neo/launch?.rand=dhpvbsqibfa6l
SearchScopes: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> DefaultScope {8480B1E8-A45C-45F9-B59B-4AE37D2C9612} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> {14FF4D56-9DB2-49CA-9001-E124A693E056} URL =
SearchScopes: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> {8480B1E8-A45C-45F9-B59B-4AE37D2C9612} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> {A16113BC-2031-4602-81FB-96B1E6E68B2D} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=ie8
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
IE Session Restore: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> está habilitado.
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Edge:
======
Edge Session Restore: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> está habilitado.
Edge Extension: (Office Online) -> 2016_MicrosoftOfficeOnline_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.OfficeOnline_1.5.1.0_neutral__8wekyb3d8bbwe [2017-06-04]
Edge Extension: (Translator For Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.16.0_neutral__8wekyb3d8bbwe [2017-06-04]
FireFox:
========
FF DefaultProfile: au9jcg82.default
FF ProfilePath: C:\Users\bibi_\AppData\Roaming\Mozilla\Firefox\Profiles\au9jcg82.default [2017-09-17]
FF Homepage: Mozilla\Firefox\Profiles\au9jcg82.default -> www.gmail.com
FF Session Restore: Mozilla\Firefox\Profiles\au9jcg82.default -> está habilitado.
FF Extension: (Adblock Plus) - C:\Users\bibi_\AppData\Roaming\Mozilla\Firefox\Profiles\au9jcg82.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-26]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-03] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Session Restore: Default -> está habilitado.
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default [2017-09-17]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-10]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-30]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-30]
CHR Extension: (MEGA) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2017-09-17]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-30]
CHR Extension: (Google Search) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-30]
CHR Extension: (PocketSmith – Previsão de fluxo de caixa) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpacaoamfanlmkfcalnbbcdbmfcmclf [2017-01-13]
CHR Extension: (Dropbox para Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2017-03-03]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-27]
CHR Extension: (Combine doces de luxo) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehehgijaidopomcfpkigakimeoglkjpa [2016-01-01]
CHR Extension: (Video Downloader professional) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2017-08-27]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-10]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-20]
CHR Extension: (GBBD Banco Santander (Brasil) S.A.) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\idnljhnpjegfbcohjhdnhjlnfnffmbnf [2016-01-01]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-27]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-30]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-27]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-04-27]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-09-06]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-01]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-01]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-01]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-01]
CHR Extension: (Anna Sui) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjohejgigkmiclpgnilojffhiohcglib [2016-01-01]
CHR Extension: (Google Search) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-01]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-13]
CHR Extension: (Video Downloader professional) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2017-08-13]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-01]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-27]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-01]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-13]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-09-06]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-01]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-01]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-01]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-01]
CHR Extension: (Google Search) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-01]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-15]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-01]
CHR Extension: (Katie's butterflies.) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gbpkehnhcfehoeahdnpafnfffkdnnoeb [2016-01-01]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-01]
CHR Extension: (Sticky Notes) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nbjdhgkkhefpifbifjiflpaajchdkhpg [2017-03-03]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-27]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-01]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-15]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3 [2017-09-17]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-01]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-01]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-01]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-01]
CHR Extension: (Google Search) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-01]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-11]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-01]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-26]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-01]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-11]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4 [2017-09-17]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-03-17]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-17]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-17]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-17]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-27]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-03-17]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-28]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-03-17]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-27]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-17]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-27]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5 [2017-09-17]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-03-25]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-25]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-25]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-25]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-14]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-03-25]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-28]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-03-25]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-11]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-25]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-14]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\System Profile [2017-04-27]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx
CHR HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 BoxSyncUpdateService; C:\Program Files\Box\Box Sync\SyncUpdaterService.exe [36680 2017-08-07] (Box, Inc.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\Bluestacks\HD-Service.exe [445976 2016-09-21] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe [425496 2016-09-21] (BlueStack Systems, Inc.)
S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [466456 2016-09-21] (BlueStack Systems, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-01] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-01] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [49992 2017-09-14] (Dropbox, Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [208760 2017-07-27] (Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3294584 2017-07-27] (Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [217464 2017-07-27] (Dell Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2016-12-21] (Dell Inc.)
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2017-01-11] (Dell)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [49864 2015-08-24] ()
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [230248 2017-05-01] (Dell Inc.)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1392792 2015-10-30] (Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [382456 2017-02-16] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Arquivo não assinado]
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-17] (Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel)
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Arquivo não assinado]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation)
R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [26112 2016-10-20] () [Arquivo não assinado]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2016-02-08] ()
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [47144 2017-04-06] (Dell)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294616 2015-05-22] (Realtek Semiconductor)
R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [1995208 2017-04-04] (Scopus Soluções em TI Ltda)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [53208 2017-08-04] (Dell Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3833248 2016-02-08] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 BstHdDrv; C:\Program Files (x86)\Bluestacks\HD-Hypervisor-amd64.sys [152672 2016-09-21] (BlueStack Systems)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2016-09-13] (Bluestack System Inc. )
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [32960 2017-04-11] (Dell Inc.)
R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32568 2017-04-11] (Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (OSR Open Systems Resources, Inc.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [55784 2015-10-30] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52200 2015-10-30] (Intel Corporation)
R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [50664 2015-10-30] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260072 2015-10-30] (Intel Corporation)
R3 iaLPSS_GPIO; C:\WINDOWS\System32\drivers\iaLPSS_GPIO.sys [46856 2015-06-15] (Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [250624 2016-10-15] (Intel Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [253856 2017-09-17] (Malwarebytes)
S3 Netwtw02; C:\WINDOWS\System32\drivers\Netwtw02.sys [6711048 2015-11-05] (Intel Corporation)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7218176 2017-03-18] (Intel Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Windows (R) Win 7 DDK provider)
S3 USB_Ethernet_Adaptor; C:\WINDOWS\System32\drivers\USB_Ethernet_Adaptor.sys [21504 2013-01-22] (Corechip Semiconductor, Inc. Co Ltd.)
R1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-12-18] (Oracle Corporation)
R3 VirtualButtons; C:\WINDOWS\System32\drivers\VirtualButtons.sys [41992 2017-03-31] (Intel Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-09-17 16:50 - 2017-09-17 16:51 - 000038408 _____ C:\Users\bibi_\Desktop\FRST.txt
2017-09-17 16:50 - 2017-09-17 16:50 - 000000000 ____D C:\FRST
2017-09-17 16:49 - 2017-09-17 16:49 - 002399744 _____ (Farbar) C:\Users\bibi_\Desktop\FRST64.exe
2017-09-17 15:11 - 2017-09-17 15:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-09-14 20:25 - 2017-09-14 20:25 - 000000000 ___HD C:\OneDriveTemp
2017-09-14 20:22 - 2017-09-17 16:33 - 092012544 _____ C:\WINDOWS\system32\config\SOFTWARE
2017-09-14 20:20 - 2017-09-14 20:20 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2017-09-14 20:10 - 2017-09-14 20:10 - 009826968 _____ (Piriform Ltd) C:\Users\bibi_\Downloads\ccsetup534.exe
2017-09-14 18:41 - 2017-09-14 18:41 - 000049992 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-09-14 18:41 - 2017-09-14 18:41 - 000045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-09-14 18:41 - 2017-09-14 18:41 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-09-14 18:41 - 2017-09-14 18:41 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-09-13 16:46 - 2017-09-13 16:46 - 000001193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive for PC is now Backup and Sync from Google.lnk
2017-09-13 16:46 - 2017-09-13 16:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2017-09-06 11:28 - 2017-09-06 11:28 - 000001556 _____ C:\Users\bibi_\Desktop\Sticky Notes.lnk
2017-09-06 11:27 - 2017-09-06 11:27 - 000001072 _____ C:\Users\bibi_\Desktop\adwcleaner.lnk
2017-09-06 11:01 - 2017-09-06 11:01 - 008182736 _____ (Malwarebytes) C:\Users\bibi_\Downloads\adwcleaner_7.0.2.1.exe
2017-09-06 10:57 - 2017-09-06 10:57 - 000002409 _____ C:\Users\bibi_\Desktop\Evernote.lnk
2017-09-06 10:57 - 2017-09-06 10:57 - 000000000 ____D C:\Users\bibi_\Evernote
2017-09-06 10:51 - 2017-09-06 10:52 - 000000000 ____D C:\Users\bibi_\Desktop\Jogos
2017-09-02 19:31 - 2017-09-02 19:31 - 000003276 _____ C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask-Retry
2017-08-27 12:17 - 2017-09-06 10:45 - 000000000 ____D C:\Users\bibi_\AppData\Roaming\MPC-HC
2017-08-27 12:13 - 2017-08-27 12:13 - 000001747 _____ C:\Users\Public\Desktop\MPC-HC x64.lnk
2017-08-27 12:13 - 2017-08-27 12:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
2017-08-27 12:13 - 2017-08-27 12:13 - 000000000 ____D C:\Program Files\MPC-HC
2017-08-25 00:00 - 2017-08-25 00:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Box Sync
2017-08-21 14:44 - 2017-09-06 10:44 - 000000000 ____D C:\WINDOWS\Minidump
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-09-17 16:42 - 2017-03-18 18:01 - 000000000 ____D C:\WINDOWS\INF
2017-09-17 16:36 - 2015-12-30 21:10 - 000000000 ___RD C:\Users\bibi_\Google Drive
2017-09-17 16:36 - 2015-12-30 18:37 - 000000000 ___RD C:\Users\bibi_\OneDrive
2017-09-17 16:35 - 2017-06-04 22:29 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-09-17 16:35 - 2015-12-30 18:34 - 000000000 __SHD C:\Users\bibi_\IntelGraphicsProfiles
2017-09-17 16:34 - 2017-06-04 22:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-09-17 16:33 - 2017-03-18 08:40 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2017-09-17 16:29 - 2017-06-18 18:48 - 000000000 ____D C:\AdwCleaner
2017-09-17 16:25 - 2017-06-18 18:48 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-09-17 16:09 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-17 16:08 - 2017-03-18 18:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-17 15:52 - 2017-03-18 17:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-09-17 15:36 - 2017-06-04 22:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-09-17 15:11 - 2015-10-27 00:08 - 000000000 ____D C:\Program Files (x86)\Dropbox
2017-09-17 15:07 - 2017-06-04 22:25 - 000476560 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-09-17 15:02 - 2017-06-04 22:46 - 002265890 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-17 15:02 - 2017-03-20 01:00 - 000909256 _____ C:\WINDOWS\system32\prfh0416.dat
2017-09-17 15:02 - 2017-03-20 01:00 - 000247836 _____ C:\WINDOWS\system32\prfc0416.dat
2017-09-14 20:19 - 2017-06-04 22:31 - 000000000 ____D C:\Users\bibi_
2017-09-14 20:12 - 2017-06-04 22:48 - 000004184 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D1BD9281-FA46-451E-9945-2B4572E08CF0}
2017-09-14 20:11 - 2016-12-19 11:44 - 000000000 ____D C:\Users\bibi_\AppData\LocalLow\Mozilla
2017-09-14 20:11 - 2016-02-08 00:42 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-09-13 18:35 - 2017-08-11 17:06 - 000005292 _____ C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-2IMCRLA-bibi_ DESKTOP-2IMCRLA
2017-09-13 16:43 - 2016-12-18 20:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-09-10 20:52 - 2017-07-30 19:37 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1849708004-2261678134-3419513933-1001
2017-09-10 20:52 - 2015-12-30 18:37 - 000002375 _____ C:\Users\bibi_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-06 11:35 - 2015-12-30 18:34 - 000000000 ____D C:\Users\bibi_\AppData\Local\Packages
2017-09-06 11:04 - 2016-05-15 09:48 - 000000000 ____D C:\Users\bibi_\AppData\Roaming\WhatsApp
2017-09-06 11:03 - 2016-05-15 09:47 - 000000000 ____D C:\Users\bibi_\AppData\Local\SquirrelTemp
2017-09-06 10:52 - 2016-01-05 10:31 - 000000000 ____D C:\Users\Todos os Usuários\VMware
2017-09-06 10:52 - 2016-01-05 10:31 - 000000000 ____D C:\ProgramData\VMware
2017-09-06 10:52 - 2016-01-05 10:29 - 000000000 ____D C:\Users\bibi_\AppData\Roaming\Andy
2017-09-06 10:44 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-09-04 01:47 - 2016-01-01 16:40 - 000000000 ___RD C:\Users\bibi_\Dropbox
2017-09-03 20:10 - 2015-10-27 00:01 - 000000000 ____D C:\Program Files\Dell
2017-09-02 14:27 - 2017-04-22 19:57 - 000000000 ____D C:\Users\bibi_\AppData\Roaming\uTorrent
2017-08-31 21:49 - 2017-08-11 22:57 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-31 21:08 - 2017-01-15 17:22 - 000002236 _____ C:\Users\bibi_\Desktop\Popcorn-Time.lnk
2017-08-30 10:43 - 2016-09-24 18:42 - 000000000 ____D C:\Users\bibi_\AppData\Local\Box Sync
2017-08-28 15:47 - 2015-12-30 21:07 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-21 18:23 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\rescache
2017-08-19 19:16 - 2016-01-09 21:59 - 000000000 ____D C:\Users\bibi_\Documents\Campinas
2017-08-18 21:43 - 2017-06-18 18:48 - 000077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-08-18 21:42 - 2017-04-12 22:17 - 000001776 _____ C:\Users\Public\Desktop\VDownloader.lnk
2017-08-18 21:42 - 2017-04-12 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VDownloader
2017-08-18 21:42 - 2017-04-12 22:17 - 000000000 ____D C:\Program Files\VDownloader
2017-08-18 21:40 - 2016-01-24 16:42 - 000544424 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-08-18 21:38 - 2017-04-12 22:17 - 000000000 ____D C:\Users\bibi_\AppData\Roaming\VDownloader
2017-08-18 21:37 - 2017-04-12 22:17 - 000000000 ____D C:\Users\bibi_\AppData\Local\VDownloader
==================== Arquivos na raiz de alguns diretórios =======
2015-12-30 20:40 - 2016-01-26 18:40 - 000000139 _____ () C:\Users\bibi_\AppData\Roaming\WB.CFG
2016-10-16 21:15 - 2016-10-16 21:15 - 000000000 _____ () C:\Users\bibi_\AppData\Local\{2104E200-A49E-4DCC-8452-E1D47511642B}
2017-06-04 22:29 - 2017-06-04 22:29 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-09-06 14:22
==================== Fim de FRST.txt ============================
Executado por bibi_ (administrador) em DESKTOP-2IMCRLA (17-09-2017 16:50:38)
Executando a partir de C:\Users\bibi_\Desktop
Perfis Carregados: bibi_ (Perfis Disponíveis: bibi_)
Platform: Windows 10 Home Single Language Versão 1703 (X64) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: Chrome)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
() C:\Windows\KMS-R@1n.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradserv.exe
(Intel) C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Scopus Soluções em TI Ltda) C:\Program Files (x86)\scpbrad\scpbradguard.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Box, Inc.) C:\Program Files\Box\Box Sync\BoxSync.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\Bluestacks\HD-Agent.exe
(Facebook) C:\Users\bibi_\AppData\Local\Facebook\Games\FacebookGameroom.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files\Box\Box Sync\BoxSyncMonitor.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(The CefSharp Authors) C:\Users\bibi_\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
() C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
(Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registro (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8495320 2015-06-23] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3877936 2015-06-12] (Dell Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [611248 2015-05-26] (Waves Audio Ltd.)
HKLM\...\Run: [BoxSync] => C:\Program Files\Box\Box Sync\BoxSync.exe [5088872 2017-08-07] (Box, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3487032 2017-09-14] (Dropbox, Inc.)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [986648 2016-09-21] (BlueStack Systems, Inc.)
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [40257336 2017-08-31] ()
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9855192 2017-09-07] (Piriform Ltd)
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\Bluestacks\HD-Agent.exe [986648 2016-09-21] (BlueStack Systems, Inc.)
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\...\Run: [GoogleChromeAutoLaunch_7011F00F597C135D390B550D614D426E] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1301848 2017-08-23] (Google Inc.)
IFEO\OSppSvc.exe: [Debugger] KMS-R@1nHook.exe
IFEO\SppExtComObj.exe: [Debugger] KMS-R@1nHook.exe
Startup: C:\Users\bibi_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-06-09]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\bibi_\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
Startup: C:\Users\bibi_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-01-20]
ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited)
GroupPolicy: Restrição <==== ATENÇÃO
CHR HKLM\SOFTWARE\Policies\Google: Restrição <==== ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
ProxyServer: [S-1-5-21-1849708004-2261678134-3419513933-1001] => proxy.ima.sp.gov.br:3128
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a2c33670-c902-4e0b-8b0e-6da875718492}: [DhcpNameServer] 10.42.0.251 10.42.0.252
Tcpip\..\Interfaces\{a3c13200-d2cb-4ecf-bbf7-041e9ee246af}: [DhcpNameServer] 172.21.0.197 172.21.0.198
Tcpip\..\Interfaces\{ba7e5809-1f84-464c-a002-ee43f01749e4}: [DhcpNameServer] 172.21.0.197 172.21.0.198
Tcpip\..\Interfaces\{bf4a6862-b2e6-4317-8466-0c9d810f9be5}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{e947a716-ef47-4f91-9ded-222f2e43b08a}: [DhcpNameServer] 172.21.0.197 172.21.0.198
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617912&ResetID=131192275475577906&GUID=81BBAF52-512E-46A9-926D-8E04811BB6FC
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://blu181.mail.live.com/?fid=flinbox
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell15.msn.com/?pc=DCTE
HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://it-mg42.mail.yahoo.com/neo/launch?.rand=dhpvbsqibfa6l
SearchScopes: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> DefaultScope {8480B1E8-A45C-45F9-B59B-4AE37D2C9612} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> {14FF4D56-9DB2-49CA-9001-E124A693E056} URL =
SearchScopes: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> {8480B1E8-A45C-45F9-B59B-4AE37D2C9612} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> {A16113BC-2031-4602-81FB-96B1E6E68B2D} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=ie8
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
IE Session Restore: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> está habilitado.
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Edge:
======
Edge Session Restore: HKU\S-1-5-21-1849708004-2261678134-3419513933-1001 -> está habilitado.
Edge Extension: (Office Online) -> 2016_MicrosoftOfficeOnline_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.OfficeOnline_1.5.1.0_neutral__8wekyb3d8bbwe [2017-06-04]
Edge Extension: (Translator For Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.16.0_neutral__8wekyb3d8bbwe [2017-06-04]
FireFox:
========
FF DefaultProfile: au9jcg82.default
FF ProfilePath: C:\Users\bibi_\AppData\Roaming\Mozilla\Firefox\Profiles\au9jcg82.default [2017-09-17]
FF Homepage: Mozilla\Firefox\Profiles\au9jcg82.default -> www.gmail.com
FF Session Restore: Mozilla\Firefox\Profiles\au9jcg82.default -> está habilitado.
FF Extension: (Adblock Plus) - C:\Users\bibi_\AppData\Roaming\Mozilla\Firefox\Profiles\au9jcg82.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-26]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-03] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Session Restore: Default -> está habilitado.
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default [2017-09-17]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-10]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-30]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-30]
CHR Extension: (MEGA) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2017-09-17]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-30]
CHR Extension: (Google Search) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-30]
CHR Extension: (PocketSmith – Previsão de fluxo de caixa) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpacaoamfanlmkfcalnbbcdbmfcmclf [2017-01-13]
CHR Extension: (Dropbox para Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpdmhfocilnekecfjgimjdeckachfbec [2017-03-03]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-27]
CHR Extension: (Combine doces de luxo) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehehgijaidopomcfpkigakimeoglkjpa [2016-01-01]
CHR Extension: (Video Downloader professional) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2017-08-27]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-10]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-20]
CHR Extension: (GBBD Banco Santander (Brasil) S.A.) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\idnljhnpjegfbcohjhdnhjlnfnffmbnf [2016-01-01]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-27]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-30]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-27]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-04-27]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-09-06]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-01]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-01]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-01]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-01]
CHR Extension: (Anna Sui) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjohejgigkmiclpgnilojffhiohcglib [2016-01-01]
CHR Extension: (Google Search) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-01]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-13]
CHR Extension: (Video Downloader professional) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2017-08-13]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-01]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-27]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-01]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-13]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-09-06]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-01]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-01]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-01]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-01]
CHR Extension: (Google Search) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-01]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-15]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-01]
CHR Extension: (Katie's butterflies.) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gbpkehnhcfehoeahdnpafnfffkdnnoeb [2016-01-01]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-01]
CHR Extension: (Sticky Notes) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nbjdhgkkhefpifbifjiflpaajchdkhpg [2017-03-03]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-27]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-01]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-15]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3 [2017-09-17]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-01]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-01]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-01]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-01]
CHR Extension: (Google Search) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-01]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-11]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-01]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-20]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-01-01]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-26]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-01]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-11]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4 [2017-09-17]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-03-17]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-17]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-17]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-17]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-27]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-03-17]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-28]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-03-17]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-27]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-17]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-27]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5 [2017-09-17]
CHR Extension: (Google Apresentações) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-03-25]
CHR Extension: (Google Docs) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-25]
CHR Extension: (Google Drive) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-25]
CHR Extension: (YouTube) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-25]
CHR Extension: (Adobe Acrobat) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-14]
CHR Extension: (Planilhas do Google) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-03-25]
CHR Extension: (Documentos Google off-line) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-28]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-03-25]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-11]
CHR Extension: (Gmail) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-25]
CHR Extension: (Chrome Media Router) - C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-14]
CHR Profile: C:\Users\bibi_\AppData\Local\Google\Chrome\User Data\System Profile [2017-04-27]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx
CHR HKU\S-1-5-21-1849708004-2261678134-3419513933-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ====================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 BoxSyncUpdateService; C:\Program Files\Box\Box Sync\SyncUpdaterService.exe [36680 2017-08-07] (Box, Inc.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\Bluestacks\HD-Service.exe [445976 2016-09-21] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe [425496 2016-09-21] (BlueStack Systems, Inc.)
S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [466456 2016-09-21] (BlueStack Systems, Inc.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-01] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-01-01] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [49992 2017-09-14] (Dropbox, Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [208760 2017-07-27] (Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3294584 2017-07-27] (Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [217464 2017-07-27] (Dell Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2016-12-21] (Dell Inc.)
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2017-01-11] (Dell)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [49864 2015-08-24] ()
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [230248 2017-05-01] (Dell Inc.)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1392792 2015-10-30] (Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [382456 2017-02-16] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Arquivo não assinado]
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-17] (Intel Corporation)
R2 IntelUSBoverIP; C:\Program Files\Intel Corporation\USB over IP\bin\UoipService.exe [396992 2015-07-06] (Intel)
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Arquivo não assinado]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation)
R2 KMS-R@1n; C:\Windows\KMS-R@1n.exe [26112 2016-10-20] () [Arquivo não assinado]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2016-02-08] ()
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [47144 2017-04-06] (Dell)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294616 2015-05-22] (Realtek Semiconductor)
R2 scpbradserv; C:\Program Files (x86)\scpbrad\scpbradserv.exe [1995208 2017-04-04] (Scopus Soluções em TI Ltda)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [53208 2017-08-04] (Dell Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3833248 2016-02-08] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
===================== Drivers (Whitelisted) ======================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
S3 BstHdDrv; C:\Program Files (x86)\Bluestacks\HD-Hypervisor-amd64.sys [152672 2016-09-21] (BlueStack Systems)
S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2016-09-13] (Bluestack System Inc. )
R3 DDDriver; C:\WINDOWS\system32\drivers\DDDriver64Dcsa.sys [32960 2017-04-11] (Dell Inc.)
R3 DellProf; C:\WINDOWS\system32\drivers\DellProf.sys [32568 2017-04-11] (Dell Computer Corporation)
R3 DellRbtn; C:\WINDOWS\System32\drivers\DellRbtn.sys [19440 2015-05-08] (OSR Open Systems Resources, Inc.)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [55784 2015-10-30] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52200 2015-10-30] (Intel Corporation)
R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [50664 2015-10-30] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260072 2015-10-30] (Intel Corporation)
R3 iaLPSS_GPIO; C:\WINDOWS\System32\drivers\iaLPSS_GPIO.sys [46856 2015-06-15] (Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [250624 2016-10-15] (Intel Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [253856 2017-09-17] (Malwarebytes)
S3 Netwtw02; C:\WINDOWS\System32\drivers\Netwtw02.sys [6711048 2015-11-05] (Intel Corporation)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7218176 2017-03-18] (Intel Corporation)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [212056 2015-07-06] (Windows (R) Win 7 DDK provider)
S3 USB_Ethernet_Adaptor; C:\WINDOWS\System32\drivers\USB_Ethernet_Adaptor.sys [21504 2013-01-22] (Corechip Semiconductor, Inc. Co Ltd.)
R1 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-12-18] (Oracle Corporation)
R3 VirtualButtons; C:\WINDOWS\System32\drivers\VirtualButtons.sys [41992 2017-03-31] (Intel Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Um Mês Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-09-17 16:50 - 2017-09-17 16:51 - 000038408 _____ C:\Users\bibi_\Desktop\FRST.txt
2017-09-17 16:50 - 2017-09-17 16:50 - 000000000 ____D C:\FRST
2017-09-17 16:49 - 2017-09-17 16:49 - 002399744 _____ (Farbar) C:\Users\bibi_\Desktop\FRST64.exe
2017-09-17 15:11 - 2017-09-17 15:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-09-14 20:25 - 2017-09-14 20:25 - 000000000 ___HD C:\OneDriveTemp
2017-09-14 20:22 - 2017-09-17 16:33 - 092012544 _____ C:\WINDOWS\system32\config\SOFTWARE
2017-09-14 20:20 - 2017-09-14 20:20 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2017-09-14 20:10 - 2017-09-14 20:10 - 009826968 _____ (Piriform Ltd) C:\Users\bibi_\Downloads\ccsetup534.exe
2017-09-14 18:41 - 2017-09-14 18:41 - 000049992 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-09-14 18:41 - 2017-09-14 18:41 - 000045672 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-09-14 18:41 - 2017-09-14 18:41 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-09-14 18:41 - 2017-09-14 18:41 - 000045640 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-09-13 16:46 - 2017-09-13 16:46 - 000001193 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive for PC is now Backup and Sync from Google.lnk
2017-09-13 16:46 - 2017-09-13 16:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2017-09-06 11:28 - 2017-09-06 11:28 - 000001556 _____ C:\Users\bibi_\Desktop\Sticky Notes.lnk
2017-09-06 11:27 - 2017-09-06 11:27 - 000001072 _____ C:\Users\bibi_\Desktop\adwcleaner.lnk
2017-09-06 11:01 - 2017-09-06 11:01 - 008182736 _____ (Malwarebytes) C:\Users\bibi_\Downloads\adwcleaner_7.0.2.1.exe
2017-09-06 10:57 - 2017-09-06 10:57 - 000002409 _____ C:\Users\bibi_\Desktop\Evernote.lnk
2017-09-06 10:57 - 2017-09-06 10:57 - 000000000 ____D C:\Users\bibi_\Evernote
2017-09-06 10:51 - 2017-09-06 10:52 - 000000000 ____D C:\Users\bibi_\Desktop\Jogos
2017-09-02 19:31 - 2017-09-02 19:31 - 000003276 _____ C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask-Retry
2017-08-27 12:17 - 2017-09-06 10:45 - 000000000 ____D C:\Users\bibi_\AppData\Roaming\MPC-HC
2017-08-27 12:13 - 2017-08-27 12:13 - 000001747 _____ C:\Users\Public\Desktop\MPC-HC x64.lnk
2017-08-27 12:13 - 2017-08-27 12:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
2017-08-27 12:13 - 2017-08-27 12:13 - 000000000 ____D C:\Program Files\MPC-HC
2017-08-25 00:00 - 2017-08-25 00:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Box Sync
2017-08-21 14:44 - 2017-09-06 10:44 - 000000000 ____D C:\WINDOWS\Minidump
==================== Um Mês Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2017-09-17 16:42 - 2017-03-18 18:01 - 000000000 ____D C:\WINDOWS\INF
2017-09-17 16:36 - 2015-12-30 21:10 - 000000000 ___RD C:\Users\bibi_\Google Drive
2017-09-17 16:36 - 2015-12-30 18:37 - 000000000 ___RD C:\Users\bibi_\OneDrive
2017-09-17 16:35 - 2017-06-04 22:29 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-09-17 16:35 - 2015-12-30 18:34 - 000000000 __SHD C:\Users\bibi_\IntelGraphicsProfiles
2017-09-17 16:34 - 2017-06-04 22:48 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-09-17 16:33 - 2017-03-18 08:40 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2017-09-17 16:29 - 2017-06-18 18:48 - 000000000 ____D C:\AdwCleaner
2017-09-17 16:25 - 2017-06-18 18:48 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-09-17 16:09 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-17 16:08 - 2017-03-18 18:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-17 15:52 - 2017-03-18 17:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-09-17 15:36 - 2017-06-04 22:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-09-17 15:11 - 2015-10-27 00:08 - 000000000 ____D C:\Program Files (x86)\Dropbox
2017-09-17 15:07 - 2017-06-04 22:25 - 000476560 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-09-17 15:02 - 2017-06-04 22:46 - 002265890 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-09-17 15:02 - 2017-03-20 01:00 - 000909256 _____ C:\WINDOWS\system32\prfh0416.dat
2017-09-17 15:02 - 2017-03-20 01:00 - 000247836 _____ C:\WINDOWS\system32\prfc0416.dat
2017-09-14 20:19 - 2017-06-04 22:31 - 000000000 ____D C:\Users\bibi_
2017-09-14 20:12 - 2017-06-04 22:48 - 000004184 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D1BD9281-FA46-451E-9945-2B4572E08CF0}
2017-09-14 20:11 - 2016-12-19 11:44 - 000000000 ____D C:\Users\bibi_\AppData\LocalLow\Mozilla
2017-09-14 20:11 - 2016-02-08 00:42 - 000000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-09-13 18:35 - 2017-08-11 17:06 - 000005292 _____ C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for DESKTOP-2IMCRLA-bibi_ DESKTOP-2IMCRLA
2017-09-13 16:43 - 2016-12-18 20:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-09-10 20:52 - 2017-07-30 19:37 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1849708004-2261678134-3419513933-1001
2017-09-10 20:52 - 2015-12-30 18:37 - 000002375 _____ C:\Users\bibi_\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-06 11:35 - 2015-12-30 18:34 - 000000000 ____D C:\Users\bibi_\AppData\Local\Packages
2017-09-06 11:04 - 2016-05-15 09:48 - 000000000 ____D C:\Users\bibi_\AppData\Roaming\WhatsApp
2017-09-06 11:03 - 2016-05-15 09:47 - 000000000 ____D C:\Users\bibi_\AppData\Local\SquirrelTemp
2017-09-06 10:52 - 2016-01-05 10:31 - 000000000 ____D C:\Users\Todos os Usuários\VMware
2017-09-06 10:52 - 2016-01-05 10:31 - 000000000 ____D C:\ProgramData\VMware
2017-09-06 10:52 - 2016-01-05 10:29 - 000000000 ____D C:\Users\bibi_\AppData\Roaming\Andy
2017-09-06 10:44 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-09-04 01:47 - 2016-01-01 16:40 - 000000000 ___RD C:\Users\bibi_\Dropbox
2017-09-03 20:10 - 2015-10-27 00:01 - 000000000 ____D C:\Program Files\Dell
2017-09-02 14:27 - 2017-04-22 19:57 - 000000000 ____D C:\Users\bibi_\AppData\Roaming\uTorrent
2017-08-31 21:49 - 2017-08-11 22:57 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-31 21:08 - 2017-01-15 17:22 - 000002236 _____ C:\Users\bibi_\Desktop\Popcorn-Time.lnk
2017-08-30 10:43 - 2016-09-24 18:42 - 000000000 ____D C:\Users\bibi_\AppData\Local\Box Sync
2017-08-28 15:47 - 2015-12-30 21:07 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-21 18:23 - 2017-03-18 18:03 - 000000000 ____D C:\WINDOWS\rescache
2017-08-19 19:16 - 2016-01-09 21:59 - 000000000 ____D C:\Users\bibi_\Documents\Campinas
2017-08-18 21:43 - 2017-06-18 18:48 - 000077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-08-18 21:42 - 2017-04-12 22:17 - 000001776 _____ C:\Users\Public\Desktop\VDownloader.lnk
2017-08-18 21:42 - 2017-04-12 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VDownloader
2017-08-18 21:42 - 2017-04-12 22:17 - 000000000 ____D C:\Program Files\VDownloader
2017-08-18 21:40 - 2016-01-24 16:42 - 000544424 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-08-18 21:38 - 2017-04-12 22:17 - 000000000 ____D C:\Users\bibi_\AppData\Roaming\VDownloader
2017-08-18 21:37 - 2017-04-12 22:17 - 000000000 ____D C:\Users\bibi_\AppData\Local\VDownloader
==================== Arquivos na raiz de alguns diretórios =======
2015-12-30 20:40 - 2016-01-26 18:40 - 000000139 _____ () C:\Users\bibi_\AppData\Roaming\WB.CFG
2016-10-16 21:15 - 2016-10-16 21:15 - 000000000 _____ () C:\Users\bibi_\AppData\Local\{2104E200-A49E-4DCC-8452-E1D47511642B}
2017-06-04 22:29 - 2017-06-04 22:29 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap ======================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente
C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente
C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
LastRegBack: 2017-09-06 14:22
==================== Fim de FRST.txt ============================