Publicité
Publicité
Format du document : text/plain
Prévisualisation
Resultado do exame da Farbar Recovery Scan Tool (FRST) (x86) Versão:05-12-2015
Executado por ROGÉRIO (administrador) em ROGÉRIO-PC (08-12-2015 14:25:16)
Executando a partir de C:\Users\ROGÉRIO\Downloads
Perfis Carregados: ROGÉRIO (Perfis Disponíveis: ROGÉRIO)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: IE)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(IObit) C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe
(IObit) C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
(D-Link Corp.) C:\Program Files\D-Link\DWA-525 revA\AirNCFG.exe
(Wireless Service) C:\Program Files\D-Link\DWA-525 revA\WZCSLDR2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Popcorn Time) C:\Program Files\Popcorn Time\Updater.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files\Unlocker\UnlockerAssistant.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [D-Link D-Link DWA-525] => C:\Program Files\D-Link\DWA-525 revA\AirNCFG.exe [995328 2009-11-24] (D-Link Corp.)
HKLM\...\Run: [WZCSLDR2] => C:\Program Files\D-Link\DWA-525 revA\WZCSLDR2.exe [122880 2009-11-03] (Wireless Service)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111312 2015-11-06] (AVAST Software)
HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] ()
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-30] (Microsoft Corporation)
HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\...\Run: [Advanced SystemCare 8] => C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Nenhum Arquivo
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Nenhum Arquivo
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-09-09] (AVAST Software)
BootExecute: autocheck autochk * sdnclean.exe
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6A0561E0-D468-4108-9224-6CD27455084D}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.wolframalpha.com/?trackid=sp-005752
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.wolframalpha.com/?trackid=sp-005752
HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.wolframalpha.com/?trackid=sp-005752
HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
SearchScopes: HKLM -> DefaultScope {2de06457-88b8-4989-9288-5fe9c2584ab8} URL = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
SearchScopes: HKLM -> {2de06457-88b8-4989-9288-5fe9c2584ab8} URL = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
SearchScopes: HKLM -> {460C3D19-B3D4-4964-A550-77D263B0CCCB} URL =
SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&pc=AV01&ptag=AST-752
SearchScopes: HKLM -> {6586d803-df30-46d3-a89a-4136c8571d45} URL =
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> DefaultScope {2de06457-88b8-4989-9288-5fe9c2584ab8} URL = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {2de06457-88b8-4989-9288-5fe9c2584ab8} URL = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {460C3D19-B3D4-4964-A550-77D263B0CCCB} URL =
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {4AD43A14-AA87-4d4b-A345-B0BC1C61BC76} URL = hxxp://www.google.cn/search?hl=zh-CN&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&pc=AV01&ptag=AST-752
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {B8E20CD7-BAC2-4820-9AA6-1060B3AF25E2} URL = hxxp://www.baidu.com/s?wd={searchTerms}&ie={inputEncoding}&oe={outputEncoding}&abar=2&tn=77034122_oem_dg&ch=33
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {C3BBCD0B-9234-4d36-9151-EC49EE32FCE3} URL = hxxp://www.baidu.com/s?wd={searchTerms}&tn=28026190_dg&ie=utf-8
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-09] (AVAST Software)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\ROGÉRIO\AppData\Roaming\Mozilla\Firefox\Profiles\bTbbedJL.default
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Extension: Avira Browser Safety - C:\Users\ROGÉRIO\AppData\Roaming\Mozilla\Firefox\Profiles\bTbbedJL.default\Extensions\abs@avira.com [2015-08-25] [não assinado]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-09-09] [não assinado]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.palikan.com/?f=1&a=plk_adryal_15_49&cd=2XzuyEtN2Y1L1Qzu0FtDyB0DyCzzyCyDyEtCtAzztByEtC0BtN0D0Tzu0StCyEtAtCtN1L2XzutAtFtCyEtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtCtCyDtByD0DzytGtC0AtBtBtG0F0DtByEtGyCtB0D0EtGzyyD0B0DyDyDzztAtByC0Bzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2StBzzyDtB0D0ByE0EtGzyyByB0AtGyEtA0ByDtG0AyE0FzytGyBtAyCyCyDzzyB0F0F0DtDtC2QtN0A0LzuyE&cr=770797075&ir=
CHR StartupUrls: Default -> "hxxps://www.google.com/?trackid=sp-004-752"
CHR DefaultSearchURL: Default -> hxxps://www.google.com/search?q={searchTerms}&trackid=sp-004-752
CHR DefaultSearchKeyword: Default -> google.com.br
CHR DefaultSuggestURL: Default -> hxxps://www.google.com/complete/search?client=chrome&q={searchTerms}
CHR Profile: C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-22]
CHR Extension: (Google Drive) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Adblock Plus) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-24]
CHR Extension: (Google Search) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Documentos Google off-line) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-22]
CHR Extension: (Gmail) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-22]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-09-09]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-09-09]
CHR HKLM\...\Chrome\Extension: [ljibkigjccbegnbeojkoafejpoiachej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ljibkigjccbegnbeojkoafejpoiachej] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdvancedSystemCareService8; C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [821024 2015-08-05] (IObit)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-09] (AVAST Software)
S2 D_Link_DWA-525; C:\Program Files\D-Link\DWA-525 revA\ANIWZCSdS.exe [126976 2009-11-03] (Wireless Service) [Arquivo não assinado]
S2 D_Link_DWA-525_WPS; C:\Program Files\D-Link\DWA-525 revA\ANIWConnService.exe [40960 2009-07-07] () [Arquivo não assinado]
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-30] (IObit)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 Update service; C:\Program Files\Popcorn Time\Updater.exe [339968 2015-07-17] (Popcorn Time) [Arquivo não assinado]
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2015-12-01] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 anodlwf; C:\Windows\System32\DRIVERS\anodlwf.sys [12800 2009-03-06] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24016 2015-09-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [76000 2015-09-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-09-09] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49776 2015-09-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [794952 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [435464 2015-11-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [113592 2015-09-09] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [208664 2015-09-09] (AVAST Software)
S1 bbrowserboost; C:\Windows\system32\drivers\bbrowserboost.sys [121848 2015-11-28] (Baidu)
R1 BDIC; C:\Windows\system32\drivers\BDIC.sys [31752 2015-09-29] (Baidu)
R2 BDPaHlp; C:\Program Files\Baidu\BrowserProtect\1.0.2.364\drivers\x86\BDPaHlp.sys [59272 2015-09-29] (Baidu)
S3 HpSAMD; C:\Windows\system32\DRIVERS\HpSAMD.sys [67152 2009-07-13] () [Arquivo não assinado]
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-12-01] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [170200 2015-12-02] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R1 MpKsl169b7e79; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5268302-996C-43D7-9069-4A59492D2B25}\MpKsl169b7e79.sys [39168 2015-12-07] (Microsoft Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [31848 2015-06-19] (Avira Operations GmbH & Co. KG)
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [52224 2011-01-15] () [Arquivo não assinado]
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [564912 2015-12-01] (VIA Technologies, Inc.)
S1 bduniptk; system32\DRIVERS\bduniptk.sys [X]
S3 NXQuery; system32\DRIVERS\NXQuery.sys [X]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Arquivo não assinado]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
========================== MD5 dos Drivers =======================
C:\Windows\system32\DRIVERS\1394ohci.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ACPI.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\acpipmi.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\afd.sys D0B388DA1D111A34366E04EB4A5DD156
C:\Windows\system32\DRIVERS\agp440.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\djsvs.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\aliide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdagp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdppm.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\amdsata.sys D320BF87125326F996D4904FE24300FC
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\amdxata.sys 46387FB17B086D16DEA267D5BE23A2F2
C:\Windows\System32\DRIVERS\anodlwf.sys 48E008CF2EDCF8FC91A9D3507865A51D
C:\Windows\system32\drivers\appid.sys 81F97D8F8B3FB94A451CC6F7CF8B2965
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\aswHwid.sys D358A8946FC76F9B8564CB424A4D6921
C:\Windows\system32\drivers\aswMonFlt.sys 4121974453BB7B823CB0519539995A7A
C:\Windows\system32\drivers\aswRdr2.sys EA36346304039B5160E6A365FCA099CB
C:\Windows\system32\Drivers\aswRvrt.sys 02E5376D5EDFC3869DF9B459AD006949
C:\Windows\system32\drivers\aswSnx.sys 8EDBD7804545A3E25B98BB1BB9A269F6
C:\Windows\system32\drivers\aswSP.sys 9C24AE55599F7E3E484ECFB8F90554BB
C:\Windows\system32\drivers\aswStm.sys 2A4FDC85161C0BCA50F4489F7DC91ADB
C:\Windows\system32\Drivers\aswVmm.sys 8B31DFB7A3BFB59A40086E6749D0AF95
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\atapi.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\bxvbdx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\b57nd60x.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\bbrowserboost.sys 9C5F4F69FF10EBBF0CA39EADE5B2CB65
C:\Windows\system32\drivers\BDIC.sys DB795CE444E44F1CE3D20342F8672410
C:\Program Files\Baidu\BrowserProtect\1.0.2.364\drivers\x86\BDPaHlp.sys 874C2514FDA5BD166D0A4E4255EB92D6
C:\Windows\system32\Drivers\Beep.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 é legítimo
C:\Windows\System32\CLFS.sys 33A60554882FDF59CDA3E1806370BBA1
C:\Windows\system32\DRIVERS\CmBatt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\cmdide.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\cng.sys 3051724F223EA48968B19567DE2A81F4
C:\Windows\system32\DRIVERS\compbatt.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\csc.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\discache.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\dmvsc.sys 2A958EF85DB1B61FFCA65044FA4BCE9E
C:\Windows\system32\drivers\drmkaud.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\dxgkrnl.sys 3583A5A8CC2E682BFFBD4630D0FEC08B
C:\Windows\system32\DRIVERS\evbdx.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\errdev.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\exfat.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\fastfat.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\fdc.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\filetrace.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\flpydisk.sys ==> MD5 é legítimoB
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\Fs_Rec.sys 7DAE5EBCC80E45D3253F4923DC424D05
C:\Windows\System32\DRIVERS\fvevol.sys E306A24D9694C724FA2491278BF50FDB
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\HdAudio.sys A5EF29D5315111C80A5C1ABAD14C8972
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\hidusb.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\HpSAMD.sys F14C9426AA4F4BAE3399479724DD7F03
C:\Windows\System32\drivers\HTTP.sys 487569E5DA56A5A432FF8AF6D3599CF9
C:\Windows\system32\drivers\HWiNFO32.SYS 6FFB351C9C9BB88E91785F4CD7396D31
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\iaStorV.sys 5CD5F9A5444E6CDCB0AC89BD62D8B76E
C:\Windows\System32\DRIVERS\igdkmd32.sys 9467514EA189475A6E7FDC5D7BDE9D3F
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\intelide.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\IPMIDrv.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\ipnat.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\irenum.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\isapnp.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\msiscsi.sys EB34CE31FABD4DC4343FD2AD16D2CAF9
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\kbdhid.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\ksecdd.sys A1F4064171DB9F314BDABA0B43014CA4
C:\Windows\System32\Drivers\ksecpkg.sys 8A8BA57DF21630B36B2FAA229AC5B1D1
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\luafv.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\mbam.sys 40C7F4B63337414F967AC53E0520B06B
C:\Windows\system32\drivers\MBAMSwissArmy.sys 5023F594D5448E16F920157174C61358
C:\Windows\system32\drivers\mwac.sys 63254775FE0F974F5316B4EC3F163038
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\modem.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\mountmgr.sys 644905A19D0F37F2233DFCE53BC4BC19
C:\Windows\System32\DRIVERS\MpFilter.sys F112DA773EC3E9D3CDE9221ED300E033
C:\Windows\system32\DRIVERS\mpio.sys ==> MD5 é legítimo
c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5268302-996C-43D7-9069-4A59492D2B25}\MpKsl169b7e79.sys BB7BB66A8DAF16950F83AE7BF498AF8F
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\mrxdav.sys 03F899F521D2AAED1C55008F734DF252
C:\Windows\System32\DRIVERS\mrxsmb.sys 01C5B803F6E1FDF8F16F0763DA9B997D
C:\Windows\System32\DRIVERS\mrxsmb10.sys C48A8284F018BEAAFC7A027A570D9C84
C:\Windows\System32\DRIVERS\mrxsmb20.sys C1CC047CE391BB88350379153BC1C8FA
C:\Windows\system32\DRIVERS\msahci.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\msdsm.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\Msfs.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\msisadrv.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\MsRPC.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\mup.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\ndis.sys 8C9C922D71F1CD4DEF73F186416B7896
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\NDProxy.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\netr28.sys 6C14859A24ED237F09E95C8AFC4D382F
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\NisDrvWFP.sys 780FF28BCD8470C5FDDEEF69982AA295
C:\Windows\system32\Drivers\Npfs.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\Ntfs.sys C8DFF8D07755A66C7A4A738930F0FEAC
C:\Windows\system32\Drivers\Null.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\nvraid.sys B3E25EE28883877076E0E1FF877D02E0
C:\Windows\system32\drivers\nvstor.sys 4380E59A170D88C4F1022EFF6719A8A4
C:\Windows\system32\DRIVERS\nv_agp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ohci1394.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\parport.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\partmgr.sys 3F34A1B4C5F6475F320C275E63AFCE9B
C:\Windows\System32\DRIVERS\parvdm.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\pci.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\pciide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\pcw.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\peauth.sys AEBC369F7DC72AB3F5B9BDF34FA0D43F
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdpdr.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdpvideominiport.sys EAC76854C359D2534B25296AE425410D
C:\Windows\system32\Drivers\RDPWD.sys CD9214A6AE17D188D17C3CF8CB9CC693
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\Rt86win7.sys A88ED6DA43985A86713216FBB5665680
C:\Windows\system32\DRIVERS\vms3cap.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sbp2port.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\secdrv.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\serenum.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\serial.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffdisk.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffp_mmc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffp_sd.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sisagp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\spldr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\srv.sys E4C2764065D66EA1D2D3EBC28FE99C46
C:\Windows\System32\DRIVERS\srv2.sys 03F0545BD8D4C77FA0AE1CEEDFCC71AB
C:\Windows\System32\DRIVERS\srvnet.sys BE6BD660CAA6F291AE06A718A4FA8ABC
C:\Windows\System32\DRIVERS\ssmdrv.sys 424566865D82AA4BD8D6546C1F2065FA
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vmstorfl.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\storvsc.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\synth3dvsc.sys F2AD8960812FD111E20E84659EF19D43
C:\Windows\System32\drivers\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\DRIVERS\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\drivers\tcpipreg.sys 3EEBD3BD93DA46A26E89893C7AB2FF3B
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\tdtcp.sys 2C2C5AFE7EE4F620D69C23C0617651A8
C:\Windows\System32\DRIVERS\tdx.sys 7FE680A3DFA421C4A8E4879AE4C5AAB0
C:\Windows\System32\DRIVERS\termdd.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\terminpt.sys 052306FD76793D5D5AB5D9891FD1ADBB
C:\Windows\System32\DRIVERS\tssecsrv.sys 6C5139E4283249518F7743D7043775B3
C:\Windows\System32\drivers\tsusbflt.sys 0762EC36429C52543CD85E8767412BAA
C:\Windows\system32\DRIVERS\TsUsbGD.sys 01246F0BAAD7B68EC0F472AA41E33282
C:\Windows\System32\drivers\tsusbhub.sys 045ACB987C650D8186C6B4A692223860
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\uliagpkx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\usbccgp.sys 0803FBA9FE829D61AE26EC0BCC910C46
C:\Windows\system32\DRIVERS\usbcir.sys 2352AB5F9F8F097BF9D41D5A4718A041
C:\Windows\System32\DRIVERS\usbehci.sys D40855F89B69305140BBD7E9A3BA2DA6
C:\Windows\System32\DRIVERS\usbhub.sys EDF2DF71C4F1E13A6AC75F5224DE655A
C:\Windows\system32\DRIVERS\usbohci.sys 9828C8D14CC2676421778F0DE638CF97
C:\Windows\system32\DRIVERS\usbprint.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\USBSTOR.SYS F991AB9CC6B908DB552166768176896A
C:\Windows\System32\DRIVERS\usbuhci.sys 800AABFD625EEFF899F7E5496BDE37AB
C:\Windows\System32\DRIVERS\vdrvroot.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\vga.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\vhdmp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\viaagp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\viac7.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\viahduaa.sys FD54DCA36429B65EEEB1BA37A1801D55
C:\Windows\system32\DRIVERS\viaide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\vmbus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\VMBusHID.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\volmgr.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\volsnap.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vwififlt.sys 7090D3436EEB4E7DA3373090A23448F7
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\Wdf01000.sys 25944D2CC49E0A6C581D02A74B7D6645
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\wimmount.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\wmiacpi.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070
C:\Windows\System32\DRIVERS\WUDFRd.sys 867C301E8B790040AE9CF6486E8041DF
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2015-12-08 14:18 - 2015-12-08 14:21 - 00027977 _____ C:\Users\ROGÉRIO\Downloads\Addition.txt
2015-12-08 14:17 - 2015-12-08 14:25 - 00033624 _____ C:\Users\ROGÉRIO\Downloads\FRST.txt
2015-12-08 14:16 - 2015-12-08 14:25 - 00000000 ____D C:\FRST
2015-12-08 14:15 - 2015-12-08 14:16 - 01719808 _____ (Farbar) C:\Users\ROGÉRIO\Downloads\FRST.exe
2015-12-03 15:55 - 2015-12-03 15:55 - 00000917 _____ C:\Users\ROGÉRIO\Desktop\Transformice.lnk
2015-12-03 15:54 - 2015-12-03 15:54 - 00274587 _____ C:\Users\ROGÉRIO\Downloads\Transformice.exe
2015-12-03 15:54 - 2015-12-03 15:54 - 00274587 _____ C:\Users\ROGÉRIO\Downloads\Transformice (1).exe
2015-12-02 21:00 - 2015-12-02 21:00 - 03840216 _____ (AVAST Software) C:\Users\ROGÉRIO\Downloads\avast-browser-cleanup-sfx.exe
2015-12-02 20:04 - 2015-12-02 20:04 - 00002154 _____ C:\Windows\epplauncher.mif
2015-12-02 20:04 - 2015-12-02 20:04 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2015-12-02 20:04 - 2015-12-02 20:04 - 00000000 ____D C:\Program Files\Microsoft Security Client
2015-12-02 19:58 - 2015-12-02 19:59 - 11614040 _____ (Microsoft Corporation) C:\Users\ROGÉRIO\Downloads\mseinstall.exe
2015-12-02 19:00 - 2015-12-02 19:02 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Popcorn-Time-Community
2015-12-02 19:00 - 2015-12-02 19:00 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Popcorn Time Community
2015-12-02 18:29 - 2015-12-02 19:42 - 00000000 ____D C:\Program Files\Popcorn Time
2015-12-02 18:29 - 2015-12-02 18:29 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\PopcornTimeDesktop
2015-12-02 18:16 - 2015-12-02 18:33 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Popcorn-Time
2015-12-02 17:58 - 2015-12-02 17:59 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\done
2015-12-02 17:58 - 2015-12-02 17:58 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Setup6621368
2015-12-02 17:57 - 2015-12-02 18:16 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\CrashDumps
2015-12-02 17:53 - 2015-12-02 17:53 - 00000000 ____D C:\Users\Public\Documents\Guid
2015-12-02 17:53 - 2015-12-02 17:53 - 00000000 ____D C:\Users\Public\Documents\Baidu
2015-12-02 00:02 - 2015-12-02 00:19 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-12-02 00:02 - 2015-12-02 00:15 - 00001058 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-12-02 00:02 - 2015-12-02 00:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-12-02 00:02 - 2015-12-02 00:02 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-12-02 00:02 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-12-02 00:02 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-12-02 00:02 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-12-02 00:01 - 2015-12-02 00:02 - 22908888 _____ (Malwarebytes ) C:\Users\ROGÉRIO\Downloads\mbam-setup-org-2.2.0.1024.exe
2015-12-01 23:44 - 2015-12-01 23:44 - 01736704 _____ C:\Users\ROGÉRIO\Downloads\adwcleaner_5.023.exe
2015-12-01 23:32 - 2015-12-01 23:34 - 00000000 ____D C:\Program Files\Unlocker
2015-12-01 23:32 - 2015-12-01 23:32 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-12-01 23:03 - 2015-12-01 23:04 - 54890200 _____ (Microsoft Corporation) C:\Users\ROGÉRIO\Downloads\Windows-KB890830-V5.30.exe
2015-12-01 21:57 - 2015-12-02 21:23 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\NPE
2015-12-01 21:57 - 2015-12-01 21:57 - 00000000 ____D C:\Users\Todos os Usuários\Norton
2015-12-01 21:57 - 2015-12-01 21:57 - 00000000 ____D C:\ProgramData\Norton
2015-12-01 21:56 - 2015-12-01 21:56 - 10102760 _____ (Symantec Corporation) C:\Users\ROGÉRIO\Downloads\NPE.exe
2015-12-01 19:08 - 2015-12-01 19:08 - 00000000 ____D C:\Users\ROGÉRIO\Documents\Google Anti-Vírus
2015-12-01 17:28 - 2015-12-01 17:28 - 00730352 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys
2015-12-01 17:28 - 2015-12-01 17:28 - 00111168 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2015-12-01 17:28 - 2015-12-01 17:28 - 00087136 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2015-12-01 17:27 - 2015-12-01 17:27 - 02144456 _____ (Ralink Technology, Corp.) C:\Windows\system32\Drivers\netr28.sys
2015-12-01 17:27 - 2015-12-01 17:27 - 00382708 _____ C:\Windows\system32\Drivers\FW7650.bin
2015-12-01 17:27 - 2015-12-01 17:27 - 00239920 _____ (Ralink Technology, Inc.) C:\Windows\system32\RaCoInst.dll
2015-12-01 17:27 - 2015-12-01 17:27 - 00013973 _____ C:\Windows\system32\RaCoInst.dat
2015-12-01 17:27 - 2015-12-01 17:27 - 00008192 _____ C:\Windows\system32\Drivers\rt2860.bin
2015-12-01 17:27 - 2015-12-01 17:27 - 00004096 _____ C:\Windows\system32\Drivers\rt3290.bin
2015-12-01 17:27 - 2015-12-01 17:27 - 00004096 _____ C:\Windows\system32\Drivers\3290PCI4KB.bin
2015-12-01 17:26 - 2015-12-01 17:26 - 27372288 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 07161696 _____ (Dolby Laboratories) C:\Windows\system32\EEP32H.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 07161696 _____ (Dolby Laboratories) C:\Windows\system32\EEP32A.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 02589184 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIAPropPageExt.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 01824000 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 01713664 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO232.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 01531568 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaMicArrayAPO.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 01021560 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaKaraokeApo.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00862896 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIASysFx.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00860416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00739328 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO32.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 00564912 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viahduaa.sys
2015-12-01 17:26 - 2015-12-01 17:26 - 00554496 _____ (Creative Technology Ltd.) C:\Windows\system32\VMTHX32.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00351072 _____ (Dolby Laboratories) C:\Windows\system32\EED32H.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00351072 _____ (Dolby Laboratories) C:\Windows\system32\EED32A.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00322048 _____ (Creative Technology Ltd.) C:\Windows\system32\VMWRP32.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 00218232 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Dts2APO.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00112248 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaKaraokePropPageExt.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00103776 _____ (Dolby Laboratories) C:\Windows\system32\EEL32H.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00103776 _____ (Dolby Laboratories) C:\Windows\system32\EEL32A.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00088928 _____ (Dolby Laboratories) C:\Windows\system32\EEA32H.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00088928 _____ (Dolby Laboratories) C:\Windows\system32\EEA32A.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00086648 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaMicArrayPropPageExt.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00082552 _____ (VIA Technologies, Inc.) C:\Windows\system32\Dts2PropPageExt.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00076288 _____ (QSound Labs, Inc.) C:\Windows\system32\nQPropPageExt.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00073728 _____ (QSound Labs, Inc.) C:\Windows\system32\nQAPO.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00063096 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\VtSrdAPO.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00062304 _____ (Dolby Laboratories) C:\Windows\system32\EEG32H.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00062304 _____ (Dolby Laboratories) C:\Windows\system32\EEG32A.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00047736 _____ (TODO:) C:\Windows\system32\PropPageExt.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00047104 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPLD32.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 00044032 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPCN32.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 00027768 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViakaraokeSrv.exe
2015-12-01 17:26 - 2015-12-01 17:26 - 00025776 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\VMfilt32.sys
2015-12-01 17:26 - 2015-12-01 17:26 - 00000000 ____D C:\Windows\system32\SRSLabs
2015-12-01 17:26 - 2015-12-01 17:26 - 00000000 ____D C:\Program Files\VIA
2015-12-01 17:19 - 2015-12-03 17:28 - 00002100 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2015-12-01 17:19 - 2015-12-01 17:19 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS
2015-12-01 17:19 - 2015-12-01 17:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-11-29 21:22 - 2015-11-29 21:22 - 00108328 _____ C:\Users\ROGÉRIO\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-29 21:21 - 2015-11-29 21:22 - 00406064 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-28 16:10 - 2015-11-29 13:44 - 00000196 _____ C:\Windows\system32\rpt.dat
2015-11-28 15:56 - 2015-11-29 20:29 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Mega Limited
2015-11-28 15:47 - 2015-11-28 15:47 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Google
2015-11-28 12:10 - 2015-11-28 12:15 - 00121848 _____ (Baidu) C:\Windows\system32\Drivers\bbrowserboost.sys
2015-11-28 12:10 - 2015-11-28 12:10 - 00152344 _____ C:\Windows\system32\Drivers\bbrowserhlp.dll
2015-11-28 12:10 - 2015-09-29 02:26 - 00031752 _____ (Baidu) C:\Windows\system32\Drivers\BDIC.sys
2015-11-28 12:07 - 2015-11-29 20:29 - 00000000 ____D C:\Program Files\Baidu
2015-11-28 12:07 - 2015-11-28 12:21 - 00000000 ____D C:\Users\Todos os Usuários\Baidu
2015-11-28 12:07 - 2015-11-28 12:21 - 00000000 ____D C:\ProgramData\Baidu
2015-11-28 12:07 - 2015-11-28 12:10 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Baidu
2015-11-28 12:07 - 2015-11-28 12:07 - 00000000 ____D C:\Users\ROGÉRIO\AppData\LocalLow\Baidu
2015-11-28 12:07 - 2015-11-26 07:58 - 04127064 _____ C:\Users\ROGÉRIO\AppData\Roaming\da3c3f44f7de8ef5.exe
2015-11-25 19:28 - 2015-11-25 23:04 - 00010724 _____ C:\Users\ROGÉRIO\Desktop\Pasta1.xlsx
2015-11-25 19:14 - 2015-12-01 23:24 - 00081920 _____ C:\Users\ROGÉRIO\Desktop\Outubro e Novembro 2015.xls
2015-11-21 23:33 - 2015-12-08 11:34 - 00000008 _____ C:\Windows\system32\ANIWZCSUSERNAME{6A0561E0-D468-4108-9224-6CD27455084D}
2015-11-21 13:34 - 2015-11-24 17:31 - 00000000 ____D C:\Users\ROGÉRIO\Desktop\Loterias
2015-11-21 13:27 - 2015-12-08 11:35 - 00003284 _____ C:\Users\ROGÉRIO\AppData\Roaming\ANIWZCS{6A0561E0-D468-4108-9224-6CD27455084D}
2015-11-21 13:27 - 2015-12-07 18:30 - 00003284 _____ C:\Windows\system32\ANIWZCS{6A0561E0-D468-4108-9224-6CD27455084D}
2015-11-20 09:18 - 2015-11-23 23:24 - 00000000 ___RD C:\Users\ROGÉRIO\Desktop\Turma A
2015-11-17 19:38 - 2015-11-17 19:49 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Microsoft Games
2015-10-21 00:34 - 2015-11-30 00:20 - 00000000 ____D C:\Users\ROGÉRIO\Desktop\Trabalho Gabi
2015-10-17 15:00 - 2015-12-02 00:15 - 00000881 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transformice.lnk
2015-10-17 15:00 - 2015-11-28 17:07 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Transformice
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\Macromedia
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Program Files\Transformice
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
2015-10-13 00:53 - 2015-11-06 00:26 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Synthesia
2015-10-13 00:52 - 2015-12-02 00:15 - 00001877 _____ C:\Users\Public\Desktop\Play Synthesia.lnk
2015-10-13 00:52 - 2015-10-13 00:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia
2015-10-13 00:52 - 2015-10-13 00:52 - 00000000 ____D C:\Program Files\Synthesia
2015-10-12 21:32 - 2015-10-12 21:32 - 00000000 ____D C:\Users\ROGÉRIO\Documents\Synthesia Music
2015-10-07 01:23 - 2015-10-07 01:23 - 00000000 ____D C:\Users\ROGÉRIO\AppData\LocalLow\Adobe
2015-10-07 01:16 - 2015-10-07 01:16 - 00000000 ____D C:\Users\Todos os Usuários\McAfee
2015-10-07 01:16 - 2015-10-07 01:16 - 00000000 ____D C:\ProgramData\McAfee
2015-10-07 01:14 - 2015-12-02 00:15 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-10-07 01:14 - 2015-12-02 00:15 - 00002011 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2015-10-07 01:14 - 2015-10-17 15:00 - 00000000 ____D C:\Program Files\Adobe
2015-10-07 01:14 - 2015-10-07 01:14 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-10-07 01:13 - 2015-10-17 15:00 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2015-10-07 01:13 - 2015-10-17 15:00 - 00000000 ____D C:\ProgramData\Adobe
2015-10-07 01:12 - 2015-10-17 14:59 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Adobe
2015-10-07 00:07 - 2015-11-06 00:22 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\MuseScore
2015-10-07 00:06 - 2015-10-07 00:06 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\MuseScore
2015-10-06 23:50 - 2015-12-02 00:15 - 00000969 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2015-10-06 23:50 - 2015-12-02 00:15 - 00000963 _____ C:\Users\Public\Desktop\Audacity.lnk
2015-10-06 23:50 - 2015-11-05 19:11 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Audacity
2015-10-06 23:50 - 2015-10-06 23:50 - 00000000 ____D C:\Program Files\Audacity
2015-10-06 23:47 - 2015-10-06 23:48 - 22892794 _____ (Audacity Team ) C:\Users\ROGÉRIO\Downloads\audacity-win-2.0.6.exe
2015-10-06 23:37 - 2015-10-06 23:37 - 00000000 ____D C:\Users\Todos os Usuários\Notion Music
2015-10-06 23:37 - 2015-10-06 23:37 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Notion Music
2015-10-06 23:37 - 2015-10-06 23:37 - 00000000 ____D C:\ProgramData\Notion Music
2015-10-06 23:36 - 2015-10-06 23:36 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2015-10-06 23:29 - 2015-10-06 23:35 - 76226031 _____ (Notion Music, Inc.) C:\Users\ROGÉRIO\Downloads\notion-4.0.329-windows.exe
2015-10-06 18:44 - 2015-12-02 00:14 - 00001035 _____ C:\Users\ROGÉRIO\Desktop\vanBasco's Karaoke Player.lnk
2015-10-06 18:44 - 2015-10-06 18:44 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\vanBasco's Karaoke Player
2015-10-06 18:44 - 2015-10-06 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\vanBasco's Karaoke Player
2015-10-06 18:44 - 2015-10-06 18:44 - 00000000 ____D C:\Program Files\vanBasco's Karaoke Player
2015-10-06 18:43 - 2015-10-06 18:43 - 00884736 _____ C:\Users\ROGÉRIO\Downloads\vkaraoke.exe
2015-09-30 07:46 - 2015-11-16 22:36 - 00000000 ____D C:\Users\ROGÉRIO\Desktop\Turma D
2015-09-30 07:46 - 2015-10-07 15:20 - 00069120 _____ C:\Users\ROGÉRIO\Desktop\Agosto e Setembro 2015 1.xls
2015-09-29 16:45 - 2015-10-29 20:48 - 00000000 ___RD C:\Users\ROGÉRIO\Desktop\ROGÉRIO
2015-09-26 16:29 - 2015-09-26 16:29 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Microsoft Help
2015-09-26 16:28 - 2015-09-29 17:52 - 00071680 _____ C:\Users\ROGÉRIO\Desktop\Agosto e Setembro 2015.xls
2015-09-22 15:44 - 2015-12-02 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-09-22 15:44 - 2015-11-29 13:33 - 00001256 ____R C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-22 15:43 - 2015-12-08 13:54 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-22 15:43 - 2015-12-08 11:35 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-22 15:42 - 2015-11-28 17:17 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Deployment
2015-09-22 15:42 - 2015-09-22 15:42 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Apps\2.0
2015-09-18 23:09 - 2015-09-18 23:09 - 00000000 __SHD C:\found.000
2015-09-15 01:02 - 2015-09-15 01:02 - 00000000 ____D C:\Users\Todos os Usuários\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-09-15 01:02 - 2015-09-15 01:02 - 00000000 ____D C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-09-10 20:18 - 2015-12-01 23:52 - 00000000 ____D C:\AdwCleaner
2015-09-09 22:30 - 2015-09-09 22:30 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\AVAST Software
2015-09-09 22:29 - 2015-12-02 00:15 - 00002073 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-09-09 22:29 - 2015-09-09 22:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-09-09 22:28 - 2015-11-06 18:58 - 00794952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-09-09 22:28 - 2015-11-06 18:58 - 00435464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00313472 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-09-09 22:28 - 2015-09-09 22:28 - 00208664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00113592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00081728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00076000 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00049776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-09-09 22:28 - 2015-09-09 22:28 - 00024016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-09-09 22:17 - 2015-09-09 22:18 - 05685704 _____ (AVAST Software) C:\Users\ROGÉRIO\Downloads\avast_free_antivirus_setup_online.exe
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2015-12-08 14:16 - 2009-07-14 00:37 - 00000000 ____D C:\Windows
2015-12-08 11:57 - 2009-07-14 02:34 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-08 11:57 - 2009-07-14 02:34 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-08 11:35 - 2015-05-08 22:48 - 00000008 _____ C:\Windows\system32\ANIWZCSUSERNAME
2015-12-08 11:33 - 2009-07-14 02:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-04 20:13 - 2015-05-14 19:52 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2015-12-04 20:13 - 2015-05-14 19:52 - 00000000 ____D C:\ProgramData\ProductData
2015-12-03 11:34 - 2015-06-23 18:37 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-02 20:04 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\inf
2015-12-02 17:58 - 2015-07-29 01:32 - 00000372 __RSH C:\Users\Todos os Usuários\ntuser.pol
2015-12-02 17:58 - 2015-07-29 01:32 - 00000372 __RSH C:\ProgramData\ntuser.pol
2015-12-02 17:58 - 2009-07-14 00:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2015-12-02 00:15 - 2015-08-16 21:02 - 00001184 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2015-12-02 00:15 - 2015-05-30 22:18 - 00000963 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-12-02 00:15 - 2015-05-08 20:17 - 00001062 _____ C:\Users\ROGÉRIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-12-02 00:15 - 2015-05-08 20:14 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-12-02 00:15 - 2015-05-08 20:14 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-12-02 00:15 - 2009-07-14 02:46 - 00001479 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-12-02 00:15 - 2009-07-14 02:46 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2015-12-02 00:15 - 2009-07-14 02:42 - 00001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2015-12-02 00:15 - 2009-07-14 02:42 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2015-12-02 00:15 - 2009-07-14 02:42 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2015-12-02 00:15 - 2009-07-14 02:37 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2015-12-02 00:14 - 2015-06-20 23:48 - 00001212 _____ C:\Users\ROGÉRIO\Desktop\Calculator.lnk
2015-12-02 00:08 - 2015-05-08 20:28 - 01491932 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-02 00:08 - 2009-07-14 06:31 - 00654272 _____ C:\Windows\system32\prfh0416.dat
2015-12-02 00:08 - 2009-07-14 06:31 - 00124724 _____ C:\Windows\system32\prfc0416.dat
2015-12-01 22:44 - 2009-07-13 21:23 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys
2015-12-01 17:20 - 2015-05-14 19:52 - 00000000 ____D C:\Users\ROGÉRIO\AppData\LocalLow\IObit
2015-12-01 17:19 - 2015-05-14 19:52 - 00000000 ____D C:\Users\Todos os Usuários\IObit
2015-12-01 17:19 - 2015-05-14 19:52 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\IObit
2015-12-01 17:19 - 2015-05-14 19:52 - 00000000 ____D C:\ProgramData\IObit
2015-12-01 17:19 - 2015-05-14 19:52 - 00000000 ____D C:\Program Files\IObit
2015-11-29 23:44 - 2015-07-23 12:33 - 00000000 ___RD C:\Users\ROGÉRIO\Desktop\Turma Noite
2015-11-28 15:55 - 2009-07-14 00:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-21 13:14 - 2015-05-08 20:27 - 00000008 _____ C:\Windows\system32\ANIWZCSUSERNAME{4797C8C7-30AF-4BCD-B021-2CE24CA9992D}
2015-11-20 17:40 - 2015-05-08 20:28 - 00003284 _____ C:\Windows\system32\ANIWZCS{4797C8C7-30AF-4BCD-B021-2CE24CA9992D}
2015-11-20 17:40 - 2015-05-08 20:28 - 00003284 _____ C:\Users\ROGÉRIO\AppData\Roaming\ANIWZCS{4797C8C7-30AF-4BCD-B021-2CE24CA9992D}
2015-11-16 22:36 - 2015-07-23 12:33 - 00000000 ___RD C:\Users\ROGÉRIO\Desktop\Turma E
2015-11-09 20:37 - 2015-05-08 20:16 - 00000000 ____D C:\Users\ROGÉRIO
==================== Arquivos na raiz de alguns diretórios =======
2015-05-08 20:28 - 2015-11-20 17:40 - 0003284 _____ () C:\Users\ROGÉRIO\AppData\Roaming\ANIWZCS{4797C8C7-30AF-4BCD-B021-2CE24CA9992D}
2015-11-21 13:27 - 2015-12-08 11:35 - 0003284 _____ () C:\Users\ROGÉRIO\AppData\Roaming\ANIWZCS{6A0561E0-D468-4108-9224-6CD27455084D}
2015-11-28 12:07 - 2015-11-26 07:58 - 4127064 _____ () C:\Users\ROGÉRIO\AppData\Roaming\da3c3f44f7de8ef5.exe
2015-04-19 10:20 - 2015-08-01 19:54 - 0000626 _____ () C:\Users\ROGÉRIO\AppData\Roaming\it0wiCwkmCMx1UyVWhbmd
Alguns arquivos em TEMP:
====================
C:\Users\ROGÉRIO\AppData\Local\Temp\sqlite3.dll
C:\Users\ROGÉRIO\AppData\Local\Temp\{0BA425F4-16AA-4BCA-803D-78979B35C521}-47.0.2526.73_46.0.2490.86_chrome_updater.exe
Alguns com tamanho de zero byte arquivos/pastas:
==========================
C:\Windows\System32\SearchFilterHost.exe
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
==================== BCD ================================
Gerenciador de Inicializa‡Æo do Windows
--------------------
identificador {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale pt-BR
inherit {globalsettings}
default {current}
resumeobject {ec15d2a0-f5ce-11e4-990d-c77e76053235}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Carregador de Inicializa‡Æo do Windows
-------------------
identificador {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale pt-BR
inherit {bootloadersettings}
recoverysequence {ec15d2a2-f5ce-11e4-990d-c77e76053235}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {ec15d2a0-f5ce-11e4-990d-c77e76053235}
nx OptIn
Carregador de Inicializa‡Æo do Windows
-------------------
identificador {ec15d2a2-f5ce-11e4-990d-c77e76053235}
device ramdisk=[C:]\Recovery\ec15d2a2-f5ce-11e4-990d-c77e76053235\Winre.wim,{ec15d2a3-f5ce-11e4-990d-c77e76053235}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\ec15d2a2-f5ce-11e4-990d-c77e76053235\Winre.wim,{ec15d2a3-f5ce-11e4-990d-c77e76053235}
systemroot \windows
nx OptIn
winpe Yes
Continuar da Hiberna‡Æo
---------------------
identificador {ec15d2a0-f5ce-11e4-990d-c77e76053235}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale pt-BR
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
pae No
debugoptionenabled No
Testador de Mem¢ria do Windows
---------------------
identificador {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Diagn¢stico de Mem¢ria do Windows
locale pt-BR
inherit {globalsettings}
badmemoryaccess Yes
Configura‡äes de EMS
------------
identificador {emssettings}
bootems Yes
Configura‡äes do Depurador
-----------------
identificador {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Defeitos de RAM
-----------
identificador {badmemory}
Configura‡äes Globais
---------------
identificador {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Configura‡äes do Carregador de Inicializa‡Æo
--------------------
identificador {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Configura‡äes do Hypervisor
-------------------
identificador {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Configura‡äes do Carregador de Retorno
----------------------
identificador {resumeloadersettings}
inherit {globalsettings}
Op‡äes de dispositivo
--------------
identificador {ec15d2a3-f5ce-11e4-990d-c77e76053235}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\ec15d2a2-f5ce-11e4-990d-c77e76053235\boot.sdi
LastRegBack: 2015-11-30 11:00
==================== Fim de FRST.txt ============================
Executado por ROGÉRIO (administrador) em ROGÉRIO-PC (08-12-2015 14:25:16)
Executando a partir de C:\Users\ROGÉRIO\Downloads
Perfis Carregados: ROGÉRIO (Perfis Disponíveis: ROGÉRIO)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Idioma: Português (Brasil)
Internet Explorer Versão 11 (Navegador padrão: IE)
Modo da Inicialização: Normal
Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processos (Whitelisted) =================
(Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.)
(IObit) C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe
(IObit) C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
(D-Link Corp.) C:\Program Files\D-Link\DWA-525 revA\AirNCFG.exe
(Wireless Service) C:\Program Files\D-Link\DWA-525 revA\WZCSLDR2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Popcorn Time) C:\Program Files\Popcorn Time\Updater.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files\Unlocker\UnlockerAssistant.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(IObit) C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
==================== Registro (Whitelisted) ===========================
(Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.)
HKLM\...\Run: [D-Link D-Link DWA-525] => C:\Program Files\D-Link\DWA-525 revA\AirNCFG.exe [995328 2009-11-24] (D-Link Corp.)
HKLM\...\Run: [WZCSLDR2] => C:\Program Files\D-Link\DWA-525 revA\WZCSLDR2.exe [122880 2009-11-03] (Wireless Service)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111312 2015-11-06] (AVAST Software)
HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] ()
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-30] (Microsoft Corporation)
HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\...\Run: [Advanced SystemCare 8] => C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit)
HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Nenhum Arquivo
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Nenhum Arquivo
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Nenhum Arquivo
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-09-09] (AVAST Software)
BootExecute: autocheck autochk * sdnclean.exe
CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO
==================== Internet (Whitelisted) ====================
(Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.)
Hosts: Há mais de uma entrada no Hosts. Veja a seção Hosts do Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6A0561E0-D468-4108-9224-6CD27455084D}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.wolframalpha.com/?trackid=sp-005752
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.wolframalpha.com/?trackid=sp-005752
HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.wolframalpha.com/?trackid=sp-005752
HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
SearchScopes: HKLM -> DefaultScope {2de06457-88b8-4989-9288-5fe9c2584ab8} URL = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
SearchScopes: HKLM -> {2de06457-88b8-4989-9288-5fe9c2584ab8} URL = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
SearchScopes: HKLM -> {460C3D19-B3D4-4964-A550-77D263B0CCCB} URL =
SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&pc=AV01&ptag=AST-752
SearchScopes: HKLM -> {6586d803-df30-46d3-a89a-4136c8571d45} URL =
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> DefaultScope {2de06457-88b8-4989-9288-5fe9c2584ab8} URL = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {2de06457-88b8-4989-9288-5fe9c2584ab8} URL = hxxps://www.wolframalpha.com/input/?i={searchTerms}&trackid=sp-005752
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {460C3D19-B3D4-4964-A550-77D263B0CCCB} URL =
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {4AD43A14-AA87-4d4b-A345-B0BC1C61BC76} URL = hxxp://www.google.cn/search?hl=zh-CN&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&pc=AV01&ptag=AST-752
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {B8E20CD7-BAC2-4820-9AA6-1060B3AF25E2} URL = hxxp://www.baidu.com/s?wd={searchTerms}&ie={inputEncoding}&oe={outputEncoding}&abar=2&tn=77034122_oem_dg&ch=33
SearchScopes: HKU\S-1-5-21-2975893055-1567338086-3053855388-1000 -> {C3BBCD0B-9234-4d36-9151-EC49EE32FCE3} URL = hxxp://www.baidu.com/s?wd={searchTerms}&tn=28026190_dg&ie=utf-8
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-09] (AVAST Software)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\ROGÉRIO\AppData\Roaming\Mozilla\Firefox\Profiles\bTbbedJL.default
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Extension: Avira Browser Safety - C:\Users\ROGÉRIO\AppData\Roaming\Mozilla\Firefox\Profiles\bTbbedJL.default\Extensions\abs@avira.com [2015-08-25] [não assinado]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-09-09] [não assinado]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.palikan.com/?f=1&a=plk_adryal_15_49&cd=2XzuyEtN2Y1L1Qzu0FtDyB0DyCzzyCyDyEtCtAzztByEtC0BtN0D0Tzu0StCyEtAtCtN1L2XzutAtFtCyEtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDtCtCyDtByD0DzytGtC0AtBtBtG0F0DtByEtGyCtB0D0EtGzyyD0B0DyDyDzztAtByC0Bzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2StBzzyDtB0D0ByE0EtGzyyByB0AtGyEtA0ByDtG0AyE0FzytGyBtAyCyCyDzzyB0F0F0DtDtC2QtN0A0LzuyE&cr=770797075&ir=
CHR StartupUrls: Default -> "hxxps://www.google.com/?trackid=sp-004-752"
CHR DefaultSearchURL: Default -> hxxps://www.google.com/search?q={searchTerms}&trackid=sp-004-752
CHR DefaultSearchKeyword: Default -> google.com.br
CHR DefaultSuggestURL: Default -> hxxps://www.google.com/complete/search?client=chrome&q={searchTerms}
CHR Profile: C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-22]
CHR Extension: (Google Drive) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Adblock Plus) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-24]
CHR Extension: (Google Search) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Documentos Google off-line) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-22]
CHR Extension: (Gmail) - C:\Users\ROGÉRIO\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-22]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-09-09]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-09-09]
CHR HKLM\...\Chrome\Extension: [ljibkigjccbegnbeojkoafejpoiachej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2975893055-1567338086-3053855388-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ljibkigjccbegnbeojkoafejpoiachej] - hxxps://clients2.google.com/service/update2/crx
==================== Serviços (Whitelisted) ========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R2 AdvancedSystemCareService8; C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [821024 2015-08-05] (IObit)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-09] (AVAST Software)
S2 D_Link_DWA-525; C:\Program Files\D-Link\DWA-525 revA\ANIWZCSdS.exe [126976 2009-11-03] (Wireless Service) [Arquivo não assinado]
S2 D_Link_DWA-525_WPS; C:\Program Files\D-Link\DWA-525 revA\ANIWConnService.exe [40960 2009-07-07] () [Arquivo não assinado]
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-30] (IObit)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 Update service; C:\Program Files\Popcorn Time\Updater.exe [339968 2015-07-17] (Popcorn Time) [Arquivo não assinado]
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2015-12-01] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
R1 anodlwf; C:\Windows\System32\DRIVERS\anodlwf.sys [12800 2009-03-06] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24016 2015-09-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [76000 2015-09-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-09-09] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49776 2015-09-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [794952 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [435464 2015-11-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [113592 2015-09-09] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [208664 2015-09-09] (AVAST Software)
S1 bbrowserboost; C:\Windows\system32\drivers\bbrowserboost.sys [121848 2015-11-28] (Baidu)
R1 BDIC; C:\Windows\system32\drivers\BDIC.sys [31752 2015-09-29] (Baidu)
R2 BDPaHlp; C:\Program Files\Baidu\BrowserProtect\1.0.2.364\drivers\x86\BDPaHlp.sys [59272 2015-09-29] (Baidu)
S3 HpSAMD; C:\Windows\system32\DRIVERS\HpSAMD.sys [67152 2009-07-13] () [Arquivo não assinado]
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-12-01] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [170200 2015-12-02] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R1 MpKsl169b7e79; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5268302-996C-43D7-9069-4A59492D2B25}\MpKsl169b7e79.sys [39168 2015-12-07] (Microsoft Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [31848 2015-06-19] (Avira Operations GmbH & Co. KG)
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [52224 2011-01-15] () [Arquivo não assinado]
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [564912 2015-12-01] (VIA Technologies, Inc.)
S1 bduniptk; system32\DRIVERS\bduniptk.sys [X]
S3 NXQuery; system32\DRIVERS\NXQuery.sys [X]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [Arquivo não assinado]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
========================== MD5 dos Drivers =======================
C:\Windows\system32\DRIVERS\1394ohci.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ACPI.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\acpipmi.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\afd.sys D0B388DA1D111A34366E04EB4A5DD156
C:\Windows\system32\DRIVERS\agp440.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\djsvs.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\aliide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdagp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\amdppm.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\amdsata.sys D320BF87125326F996D4904FE24300FC
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\amdxata.sys 46387FB17B086D16DEA267D5BE23A2F2
C:\Windows\System32\DRIVERS\anodlwf.sys 48E008CF2EDCF8FC91A9D3507865A51D
C:\Windows\system32\drivers\appid.sys 81F97D8F8B3FB94A451CC6F7CF8B2965
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\aswHwid.sys D358A8946FC76F9B8564CB424A4D6921
C:\Windows\system32\drivers\aswMonFlt.sys 4121974453BB7B823CB0519539995A7A
C:\Windows\system32\drivers\aswRdr2.sys EA36346304039B5160E6A365FCA099CB
C:\Windows\system32\Drivers\aswRvrt.sys 02E5376D5EDFC3869DF9B459AD006949
C:\Windows\system32\drivers\aswSnx.sys 8EDBD7804545A3E25B98BB1BB9A269F6
C:\Windows\system32\drivers\aswSP.sys 9C24AE55599F7E3E484ECFB8F90554BB
C:\Windows\system32\drivers\aswStm.sys 2A4FDC85161C0BCA50F4489F7DC91ADB
C:\Windows\system32\Drivers\aswVmm.sys 8B31DFB7A3BFB59A40086E6749D0AF95
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\atapi.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\bxvbdx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\b57nd60x.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\bbrowserboost.sys 9C5F4F69FF10EBBF0CA39EADE5B2CB65
C:\Windows\system32\drivers\BDIC.sys DB795CE444E44F1CE3D20342F8672410
C:\Program Files\Baidu\BrowserProtect\1.0.2.364\drivers\x86\BDPaHlp.sys 874C2514FDA5BD166D0A4E4255EB92D6
C:\Windows\system32\Drivers\Beep.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 é legítimo
C:\Windows\System32\CLFS.sys 33A60554882FDF59CDA3E1806370BBA1
C:\Windows\system32\DRIVERS\CmBatt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\cmdide.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\cng.sys 3051724F223EA48968B19567DE2A81F4
C:\Windows\system32\DRIVERS\compbatt.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\CompositeBus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\csc.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\discache.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\dmvsc.sys 2A958EF85DB1B61FFCA65044FA4BCE9E
C:\Windows\system32\drivers\drmkaud.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\dxgkrnl.sys 3583A5A8CC2E682BFFBD4630D0FEC08B
C:\Windows\system32\DRIVERS\evbdx.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\errdev.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\exfat.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\fastfat.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\fdc.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\filetrace.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\flpydisk.sys ==> MD5 é legítimoB
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\Fs_Rec.sys 7DAE5EBCC80E45D3253F4923DC424D05
C:\Windows\System32\DRIVERS\fvevol.sys E306A24D9694C724FA2491278BF50FDB
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\HdAudio.sys A5EF29D5315111C80A5C1ABAD14C8972
C:\Windows\System32\DRIVERS\HDAudBus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\hidusb.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\HpSAMD.sys F14C9426AA4F4BAE3399479724DD7F03
C:\Windows\System32\drivers\HTTP.sys 487569E5DA56A5A432FF8AF6D3599CF9
C:\Windows\system32\drivers\HWiNFO32.SYS 6FFB351C9C9BB88E91785F4CD7396D31
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\iaStorV.sys 5CD5F9A5444E6CDCB0AC89BD62D8B76E
C:\Windows\System32\DRIVERS\igdkmd32.sys 9467514EA189475A6E7FDC5D7BDE9D3F
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\intelide.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\IPMIDrv.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\ipnat.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\irenum.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\isapnp.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\msiscsi.sys EB34CE31FABD4DC4343FD2AD16D2CAF9
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\kbdhid.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\ksecdd.sys A1F4064171DB9F314BDABA0B43014CA4
C:\Windows\System32\Drivers\ksecpkg.sys 8A8BA57DF21630B36B2FAA229AC5B1D1
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\luafv.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\mbam.sys 40C7F4B63337414F967AC53E0520B06B
C:\Windows\system32\drivers\MBAMSwissArmy.sys 5023F594D5448E16F920157174C61358
C:\Windows\system32\drivers\mwac.sys 63254775FE0F974F5316B4EC3F163038
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\modem.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\mountmgr.sys 644905A19D0F37F2233DFCE53BC4BC19
C:\Windows\System32\DRIVERS\MpFilter.sys F112DA773EC3E9D3CDE9221ED300E033
C:\Windows\system32\DRIVERS\mpio.sys ==> MD5 é legítimo
c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A5268302-996C-43D7-9069-4A59492D2B25}\MpKsl169b7e79.sys BB7BB66A8DAF16950F83AE7BF498AF8F
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\mrxdav.sys 03F899F521D2AAED1C55008F734DF252
C:\Windows\System32\DRIVERS\mrxsmb.sys 01C5B803F6E1FDF8F16F0763DA9B997D
C:\Windows\System32\DRIVERS\mrxsmb10.sys C48A8284F018BEAAFC7A027A570D9C84
C:\Windows\System32\DRIVERS\mrxsmb20.sys C1CC047CE391BB88350379153BC1C8FA
C:\Windows\system32\DRIVERS\msahci.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\msdsm.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\Msfs.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\msisadrv.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\MsRPC.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\mssmbios.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 é legítimo
C:\Windows\System32\Drivers\mup.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\ndis.sys 8C9C922D71F1CD4DEF73F186416B7896
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\NDProxy.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\netr28.sys 6C14859A24ED237F09E95C8AFC4D382F
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\NisDrvWFP.sys 780FF28BCD8470C5FDDEEF69982AA295
C:\Windows\system32\Drivers\Npfs.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\Ntfs.sys C8DFF8D07755A66C7A4A738930F0FEAC
C:\Windows\system32\Drivers\Null.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\nvraid.sys B3E25EE28883877076E0E1FF877D02E0
C:\Windows\system32\drivers\nvstor.sys 4380E59A170D88C4F1022EFF6719A8A4
C:\Windows\system32\DRIVERS\nv_agp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ohci1394.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\parport.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\partmgr.sys 3F34A1B4C5F6475F320C275E63AFCE9B
C:\Windows\System32\DRIVERS\parvdm.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\pci.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\pciide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\pcw.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\peauth.sys AEBC369F7DC72AB3F5B9BDF34FA0D43F
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdpdr.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\rdpvideominiport.sys EAC76854C359D2534B25296AE425410D
C:\Windows\system32\Drivers\RDPWD.sys CD9214A6AE17D188D17C3CF8CB9CC693
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\Rt86win7.sys A88ED6DA43985A86713216FBB5665680
C:\Windows\system32\DRIVERS\vms3cap.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sbp2port.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\secdrv.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\serenum.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\serial.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffdisk.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffp_mmc.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sffp_sd.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sisagp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 é legítimo
C:\Windows\system32\Drivers\spldr.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\srv.sys E4C2764065D66EA1D2D3EBC28FE99C46
C:\Windows\System32\DRIVERS\srv2.sys 03F0545BD8D4C77FA0AE1CEEDFCC71AB
C:\Windows\System32\DRIVERS\srvnet.sys BE6BD660CAA6F291AE06A718A4FA8ABC
C:\Windows\System32\DRIVERS\ssmdrv.sys 424566865D82AA4BD8D6546C1F2065FA
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vmstorfl.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\storvsc.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\swenum.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\synth3dvsc.sys F2AD8960812FD111E20E84659EF19D43
C:\Windows\System32\drivers\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\DRIVERS\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\drivers\tcpipreg.sys 3EEBD3BD93DA46A26E89893C7AB2FF3B
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\tdtcp.sys 2C2C5AFE7EE4F620D69C23C0617651A8
C:\Windows\System32\DRIVERS\tdx.sys 7FE680A3DFA421C4A8E4879AE4C5AAB0
C:\Windows\System32\DRIVERS\termdd.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\terminpt.sys 052306FD76793D5D5AB5D9891FD1ADBB
C:\Windows\System32\DRIVERS\tssecsrv.sys 6C5139E4283249518F7743D7043775B3
C:\Windows\System32\drivers\tsusbflt.sys 0762EC36429C52543CD85E8767412BAA
C:\Windows\system32\DRIVERS\TsUsbGD.sys 01246F0BAAD7B68EC0F472AA41E33282
C:\Windows\System32\drivers\tsusbhub.sys 045ACB987C650D8186C6B4A692223860
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\uliagpkx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\usbccgp.sys 0803FBA9FE829D61AE26EC0BCC910C46
C:\Windows\system32\DRIVERS\usbcir.sys 2352AB5F9F8F097BF9D41D5A4718A041
C:\Windows\System32\DRIVERS\usbehci.sys D40855F89B69305140BBD7E9A3BA2DA6
C:\Windows\System32\DRIVERS\usbhub.sys EDF2DF71C4F1E13A6AC75F5224DE655A
C:\Windows\system32\DRIVERS\usbohci.sys 9828C8D14CC2676421778F0DE638CF97
C:\Windows\system32\DRIVERS\usbprint.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\USBSTOR.SYS F991AB9CC6B908DB552166768176896A
C:\Windows\System32\DRIVERS\usbuhci.sys 800AABFD625EEFF899F7E5496BDE37AB
C:\Windows\System32\DRIVERS\vdrvroot.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\vga.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\vhdmp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\viaagp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\viac7.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\viahduaa.sys FD54DCA36429B65EEEB1BA37A1801D55
C:\Windows\system32\DRIVERS\viaide.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\vmbus.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\VMBusHID.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\volmgr.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\volsnap.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\vwififlt.sys 7090D3436EEB4E7DA3373090A23448F7
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 é legítimo
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\Wdf01000.sys 25944D2CC49E0A6C581D02A74B7D6645
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\wimmount.sys ==> MD5 é legítimo
C:\Windows\system32\DRIVERS\wmiacpi.sys ==> MD5 é legítimo
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 é legítimo
C:\Windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070
C:\Windows\System32\DRIVERS\WUDFRd.sys 867C301E8B790040AE9CF6486E8041DF
==================== NetSvcs (Whitelisted) ===================
(Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.)
==================== Três Meses Criados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2015-12-08 14:18 - 2015-12-08 14:21 - 00027977 _____ C:\Users\ROGÉRIO\Downloads\Addition.txt
2015-12-08 14:17 - 2015-12-08 14:25 - 00033624 _____ C:\Users\ROGÉRIO\Downloads\FRST.txt
2015-12-08 14:16 - 2015-12-08 14:25 - 00000000 ____D C:\FRST
2015-12-08 14:15 - 2015-12-08 14:16 - 01719808 _____ (Farbar) C:\Users\ROGÉRIO\Downloads\FRST.exe
2015-12-03 15:55 - 2015-12-03 15:55 - 00000917 _____ C:\Users\ROGÉRIO\Desktop\Transformice.lnk
2015-12-03 15:54 - 2015-12-03 15:54 - 00274587 _____ C:\Users\ROGÉRIO\Downloads\Transformice.exe
2015-12-03 15:54 - 2015-12-03 15:54 - 00274587 _____ C:\Users\ROGÉRIO\Downloads\Transformice (1).exe
2015-12-02 21:00 - 2015-12-02 21:00 - 03840216 _____ (AVAST Software) C:\Users\ROGÉRIO\Downloads\avast-browser-cleanup-sfx.exe
2015-12-02 20:04 - 2015-12-02 20:04 - 00002154 _____ C:\Windows\epplauncher.mif
2015-12-02 20:04 - 2015-12-02 20:04 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2015-12-02 20:04 - 2015-12-02 20:04 - 00000000 ____D C:\Program Files\Microsoft Security Client
2015-12-02 19:58 - 2015-12-02 19:59 - 11614040 _____ (Microsoft Corporation) C:\Users\ROGÉRIO\Downloads\mseinstall.exe
2015-12-02 19:00 - 2015-12-02 19:02 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Popcorn-Time-Community
2015-12-02 19:00 - 2015-12-02 19:00 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Popcorn Time Community
2015-12-02 18:29 - 2015-12-02 19:42 - 00000000 ____D C:\Program Files\Popcorn Time
2015-12-02 18:29 - 2015-12-02 18:29 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\PopcornTimeDesktop
2015-12-02 18:16 - 2015-12-02 18:33 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Popcorn-Time
2015-12-02 17:58 - 2015-12-02 17:59 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\done
2015-12-02 17:58 - 2015-12-02 17:58 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Setup6621368
2015-12-02 17:57 - 2015-12-02 18:16 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\CrashDumps
2015-12-02 17:53 - 2015-12-02 17:53 - 00000000 ____D C:\Users\Public\Documents\Guid
2015-12-02 17:53 - 2015-12-02 17:53 - 00000000 ____D C:\Users\Public\Documents\Baidu
2015-12-02 00:02 - 2015-12-02 00:19 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-12-02 00:02 - 2015-12-02 00:15 - 00001058 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-12-02 00:02 - 2015-12-02 00:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-12-02 00:02 - 2015-12-02 00:02 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-12-02 00:02 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-12-02 00:02 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-12-02 00:02 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-12-02 00:01 - 2015-12-02 00:02 - 22908888 _____ (Malwarebytes ) C:\Users\ROGÉRIO\Downloads\mbam-setup-org-2.2.0.1024.exe
2015-12-01 23:44 - 2015-12-01 23:44 - 01736704 _____ C:\Users\ROGÉRIO\Downloads\adwcleaner_5.023.exe
2015-12-01 23:32 - 2015-12-01 23:34 - 00000000 ____D C:\Program Files\Unlocker
2015-12-01 23:32 - 2015-12-01 23:32 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-12-01 23:03 - 2015-12-01 23:04 - 54890200 _____ (Microsoft Corporation) C:\Users\ROGÉRIO\Downloads\Windows-KB890830-V5.30.exe
2015-12-01 21:57 - 2015-12-02 21:23 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\NPE
2015-12-01 21:57 - 2015-12-01 21:57 - 00000000 ____D C:\Users\Todos os Usuários\Norton
2015-12-01 21:57 - 2015-12-01 21:57 - 00000000 ____D C:\ProgramData\Norton
2015-12-01 21:56 - 2015-12-01 21:56 - 10102760 _____ (Symantec Corporation) C:\Users\ROGÉRIO\Downloads\NPE.exe
2015-12-01 19:08 - 2015-12-01 19:08 - 00000000 ____D C:\Users\ROGÉRIO\Documents\Google Anti-Vírus
2015-12-01 17:28 - 2015-12-01 17:28 - 00730352 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys
2015-12-01 17:28 - 2015-12-01 17:28 - 00111168 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2015-12-01 17:28 - 2015-12-01 17:28 - 00087136 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2015-12-01 17:27 - 2015-12-01 17:27 - 02144456 _____ (Ralink Technology, Corp.) C:\Windows\system32\Drivers\netr28.sys
2015-12-01 17:27 - 2015-12-01 17:27 - 00382708 _____ C:\Windows\system32\Drivers\FW7650.bin
2015-12-01 17:27 - 2015-12-01 17:27 - 00239920 _____ (Ralink Technology, Inc.) C:\Windows\system32\RaCoInst.dll
2015-12-01 17:27 - 2015-12-01 17:27 - 00013973 _____ C:\Windows\system32\RaCoInst.dat
2015-12-01 17:27 - 2015-12-01 17:27 - 00008192 _____ C:\Windows\system32\Drivers\rt2860.bin
2015-12-01 17:27 - 2015-12-01 17:27 - 00004096 _____ C:\Windows\system32\Drivers\rt3290.bin
2015-12-01 17:27 - 2015-12-01 17:27 - 00004096 _____ C:\Windows\system32\Drivers\3290PCI4KB.bin
2015-12-01 17:26 - 2015-12-01 17:26 - 27372288 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 07161696 _____ (Dolby Laboratories) C:\Windows\system32\EEP32H.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 07161696 _____ (Dolby Laboratories) C:\Windows\system32\EEP32A.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 02589184 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIAPropPageExt.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 01824000 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 01713664 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO232.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 01531568 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaMicArrayAPO.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 01021560 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaKaraokeApo.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00862896 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIASysFx.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00860416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00739328 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO32.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 00564912 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viahduaa.sys
2015-12-01 17:26 - 2015-12-01 17:26 - 00554496 _____ (Creative Technology Ltd.) C:\Windows\system32\VMTHX32.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 00509184 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00351072 _____ (Dolby Laboratories) C:\Windows\system32\EED32H.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00351072 _____ (Dolby Laboratories) C:\Windows\system32\EED32A.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00322048 _____ (Creative Technology Ltd.) C:\Windows\system32\VMWRP32.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 00218232 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Dts2APO.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00112248 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaKaraokePropPageExt.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00103776 _____ (Dolby Laboratories) C:\Windows\system32\EEL32H.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00103776 _____ (Dolby Laboratories) C:\Windows\system32\EEL32A.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00088928 _____ (Dolby Laboratories) C:\Windows\system32\EEA32H.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00088928 _____ (Dolby Laboratories) C:\Windows\system32\EEA32A.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00086648 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaMicArrayPropPageExt.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00082552 _____ (VIA Technologies, Inc.) C:\Windows\system32\Dts2PropPageExt.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00076288 _____ (QSound Labs, Inc.) C:\Windows\system32\nQPropPageExt.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00073728 _____ (QSound Labs, Inc.) C:\Windows\system32\nQAPO.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00063096 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\VtSrdAPO.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00062304 _____ (Dolby Laboratories) C:\Windows\system32\EEG32H.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00062304 _____ (Dolby Laboratories) C:\Windows\system32\EEG32A.dll
2015-12-01 17:26 - 2015-12-01 17:26 - 00047736 _____ (TODO:
2015-12-01 17:26 - 2015-12-01 17:26 - 00047104 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPLD32.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 00044032 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPCN32.DLL
2015-12-01 17:26 - 2015-12-01 17:26 - 00027768 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViakaraokeSrv.exe
2015-12-01 17:26 - 2015-12-01 17:26 - 00025776 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\VMfilt32.sys
2015-12-01 17:26 - 2015-12-01 17:26 - 00000000 ____D C:\Windows\system32\SRSLabs
2015-12-01 17:26 - 2015-12-01 17:26 - 00000000 ____D C:\Program Files\VIA
2015-12-01 17:19 - 2015-12-03 17:28 - 00002100 _____ C:\Users\Public\Desktop\Driver Booster 3.lnk
2015-12-01 17:19 - 2015-12-01 17:19 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS
2015-12-01 17:19 - 2015-12-01 17:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 3
2015-11-29 21:22 - 2015-11-29 21:22 - 00108328 _____ C:\Users\ROGÉRIO\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-29 21:21 - 2015-11-29 21:22 - 00406064 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-28 16:10 - 2015-11-29 13:44 - 00000196 _____ C:\Windows\system32\rpt.dat
2015-11-28 15:56 - 2015-11-29 20:29 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Mega Limited
2015-11-28 15:47 - 2015-11-28 15:47 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Google
2015-11-28 12:10 - 2015-11-28 12:15 - 00121848 _____ (Baidu) C:\Windows\system32\Drivers\bbrowserboost.sys
2015-11-28 12:10 - 2015-11-28 12:10 - 00152344 _____ C:\Windows\system32\Drivers\bbrowserhlp.dll
2015-11-28 12:10 - 2015-09-29 02:26 - 00031752 _____ (Baidu) C:\Windows\system32\Drivers\BDIC.sys
2015-11-28 12:07 - 2015-11-29 20:29 - 00000000 ____D C:\Program Files\Baidu
2015-11-28 12:07 - 2015-11-28 12:21 - 00000000 ____D C:\Users\Todos os Usuários\Baidu
2015-11-28 12:07 - 2015-11-28 12:21 - 00000000 ____D C:\ProgramData\Baidu
2015-11-28 12:07 - 2015-11-28 12:10 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Baidu
2015-11-28 12:07 - 2015-11-28 12:07 - 00000000 ____D C:\Users\ROGÉRIO\AppData\LocalLow\Baidu
2015-11-28 12:07 - 2015-11-26 07:58 - 04127064 _____ C:\Users\ROGÉRIO\AppData\Roaming\da3c3f44f7de8ef5.exe
2015-11-25 19:28 - 2015-11-25 23:04 - 00010724 _____ C:\Users\ROGÉRIO\Desktop\Pasta1.xlsx
2015-11-25 19:14 - 2015-12-01 23:24 - 00081920 _____ C:\Users\ROGÉRIO\Desktop\Outubro e Novembro 2015.xls
2015-11-21 23:33 - 2015-12-08 11:34 - 00000008 _____ C:\Windows\system32\ANIWZCSUSERNAME{6A0561E0-D468-4108-9224-6CD27455084D}
2015-11-21 13:34 - 2015-11-24 17:31 - 00000000 ____D C:\Users\ROGÉRIO\Desktop\Loterias
2015-11-21 13:27 - 2015-12-08 11:35 - 00003284 _____ C:\Users\ROGÉRIO\AppData\Roaming\ANIWZCS{6A0561E0-D468-4108-9224-6CD27455084D}
2015-11-21 13:27 - 2015-12-07 18:30 - 00003284 _____ C:\Windows\system32\ANIWZCS{6A0561E0-D468-4108-9224-6CD27455084D}
2015-11-20 09:18 - 2015-11-23 23:24 - 00000000 ___RD C:\Users\ROGÉRIO\Desktop\Turma A
2015-11-17 19:38 - 2015-11-17 19:49 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Microsoft Games
2015-10-21 00:34 - 2015-11-30 00:20 - 00000000 ____D C:\Users\ROGÉRIO\Desktop\Trabalho Gabi
2015-10-17 15:00 - 2015-12-02 00:15 - 00000881 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transformice.lnk
2015-10-17 15:00 - 2015-11-28 17:07 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Transformice
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Roaming\Macromedia
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Program Files\Transformice
2015-10-17 15:00 - 2015-10-17 15:00 - 00000000 ____D C:\Program Files\Common Files\Adobe AIR
2015-10-13 00:53 - 2015-11-06 00:26 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Synthesia
2015-10-13 00:52 - 2015-12-02 00:15 - 00001877 _____ C:\Users\Public\Desktop\Play Synthesia.lnk
2015-10-13 00:52 - 2015-10-13 00:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia
2015-10-13 00:52 - 2015-10-13 00:52 - 00000000 ____D C:\Program Files\Synthesia
2015-10-12 21:32 - 2015-10-12 21:32 - 00000000 ____D C:\Users\ROGÉRIO\Documents\Synthesia Music
2015-10-07 01:23 - 2015-10-07 01:23 - 00000000 ____D C:\Users\ROGÉRIO\AppData\LocalLow\Adobe
2015-10-07 01:16 - 2015-10-07 01:16 - 00000000 ____D C:\Users\Todos os Usuários\McAfee
2015-10-07 01:16 - 2015-10-07 01:16 - 00000000 ____D C:\ProgramData\McAfee
2015-10-07 01:14 - 2015-12-02 00:15 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-10-07 01:14 - 2015-12-02 00:15 - 00002011 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2015-10-07 01:14 - 2015-10-17 15:00 - 00000000 ____D C:\Program Files\Adobe
2015-10-07 01:14 - 2015-10-07 01:14 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-10-07 01:13 - 2015-10-17 15:00 - 00000000 ____D C:\Users\Todos os Usuários\Adobe
2015-10-07 01:13 - 2015-10-17 15:00 - 00000000 ____D C:\ProgramData\Adobe
2015-10-07 01:12 - 2015-10-17 14:59 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Adobe
2015-10-07 00:07 - 2015-11-06 00:22 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\MuseScore
2015-10-07 00:06 - 2015-10-07 00:06 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\MuseScore
2015-10-06 23:50 - 2015-12-02 00:15 - 00000969 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2015-10-06 23:50 - 2015-12-02 00:15 - 00000963 _____ C:\Users\Public\Desktop\Audacity.lnk
2015-10-06 23:50 - 2015-11-05 19:11 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Audacity
2015-10-06 23:50 - 2015-10-06 23:50 - 00000000 ____D C:\Program Files\Audacity
2015-10-06 23:47 - 2015-10-06 23:48 - 22892794 _____ (Audacity Team ) C:\Users\ROGÉRIO\Downloads\audacity-win-2.0.6.exe
2015-10-06 23:37 - 2015-10-06 23:37 - 00000000 ____D C:\Users\Todos os Usuários\Notion Music
2015-10-06 23:37 - 2015-10-06 23:37 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Notion Music
2015-10-06 23:37 - 2015-10-06 23:37 - 00000000 ____D C:\ProgramData\Notion Music
2015-10-06 23:36 - 2015-10-06 23:36 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2015-10-06 23:29 - 2015-10-06 23:35 - 76226031 _____ (Notion Music, Inc.) C:\Users\ROGÉRIO\Downloads\notion-4.0.329-windows.exe
2015-10-06 18:44 - 2015-12-02 00:14 - 00001035 _____ C:\Users\ROGÉRIO\Desktop\vanBasco's Karaoke Player.lnk
2015-10-06 18:44 - 2015-10-06 18:44 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\vanBasco's Karaoke Player
2015-10-06 18:44 - 2015-10-06 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\vanBasco's Karaoke Player
2015-10-06 18:44 - 2015-10-06 18:44 - 00000000 ____D C:\Program Files\vanBasco's Karaoke Player
2015-10-06 18:43 - 2015-10-06 18:43 - 00884736 _____ C:\Users\ROGÉRIO\Downloads\vkaraoke.exe
2015-09-30 07:46 - 2015-11-16 22:36 - 00000000 ____D C:\Users\ROGÉRIO\Desktop\Turma D
2015-09-30 07:46 - 2015-10-07 15:20 - 00069120 _____ C:\Users\ROGÉRIO\Desktop\Agosto e Setembro 2015 1.xls
2015-09-29 16:45 - 2015-10-29 20:48 - 00000000 ___RD C:\Users\ROGÉRIO\Desktop\ROGÉRIO
2015-09-26 16:29 - 2015-09-26 16:29 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Microsoft Help
2015-09-26 16:28 - 2015-09-29 17:52 - 00071680 _____ C:\Users\ROGÉRIO\Desktop\Agosto e Setembro 2015.xls
2015-09-22 15:44 - 2015-12-02 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-09-22 15:44 - 2015-11-29 13:33 - 00001256 ____R C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-22 15:43 - 2015-12-08 13:54 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-22 15:43 - 2015-12-08 11:35 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-22 15:42 - 2015-11-28 17:17 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Deployment
2015-09-22 15:42 - 2015-09-22 15:42 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Local\Apps\2.0
2015-09-18 23:09 - 2015-09-18 23:09 - 00000000 __SHD C:\found.000
2015-09-15 01:02 - 2015-09-15 01:02 - 00000000 ____D C:\Users\Todos os Usuários\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-09-15 01:02 - 2015-09-15 01:02 - 00000000 ____D C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-09-10 20:18 - 2015-12-01 23:52 - 00000000 ____D C:\AdwCleaner
2015-09-09 22:30 - 2015-09-09 22:30 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\AVAST Software
2015-09-09 22:29 - 2015-12-02 00:15 - 00002073 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-09-09 22:29 - 2015-09-09 22:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-09-09 22:28 - 2015-11-06 18:58 - 00794952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-09-09 22:28 - 2015-11-06 18:58 - 00435464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00313472 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-09-09 22:28 - 2015-09-09 22:28 - 00208664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00113592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00081728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00076000 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00049776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-09-09 22:28 - 2015-09-09 22:28 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-09-09 22:28 - 2015-09-09 22:28 - 00024016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-09-09 22:17 - 2015-09-09 22:18 - 05685704 _____ (AVAST Software) C:\Users\ROGÉRIO\Downloads\avast_free_antivirus_setup_online.exe
==================== Três Meses Modificados arquivos e pastas ========
(Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.)
2015-12-08 14:16 - 2009-07-14 00:37 - 00000000 ____D C:\Windows
2015-12-08 11:57 - 2009-07-14 02:34 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-08 11:57 - 2009-07-14 02:34 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-08 11:35 - 2015-05-08 22:48 - 00000008 _____ C:\Windows\system32\ANIWZCSUSERNAME
2015-12-08 11:33 - 2009-07-14 02:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-04 20:13 - 2015-05-14 19:52 - 00000000 ____D C:\Users\Todos os Usuários\ProductData
2015-12-04 20:13 - 2015-05-14 19:52 - 00000000 ____D C:\ProgramData\ProductData
2015-12-03 11:34 - 2015-06-23 18:37 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-02 20:04 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\inf
2015-12-02 17:58 - 2015-07-29 01:32 - 00000372 __RSH C:\Users\Todos os Usuários\ntuser.pol
2015-12-02 17:58 - 2015-07-29 01:32 - 00000372 __RSH C:\ProgramData\ntuser.pol
2015-12-02 17:58 - 2009-07-14 00:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2015-12-02 00:15 - 2015-08-16 21:02 - 00001184 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2015-12-02 00:15 - 2015-05-30 22:18 - 00000963 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-12-02 00:15 - 2015-05-08 20:17 - 00001062 _____ C:\Users\ROGÉRIO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-12-02 00:15 - 2015-05-08 20:14 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-12-02 00:15 - 2015-05-08 20:14 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-12-02 00:15 - 2009-07-14 02:46 - 00001479 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-12-02 00:15 - 2009-07-14 02:46 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2015-12-02 00:15 - 2009-07-14 02:42 - 00001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2015-12-02 00:15 - 2009-07-14 02:42 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2015-12-02 00:15 - 2009-07-14 02:42 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2015-12-02 00:15 - 2009-07-14 02:37 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2015-12-02 00:14 - 2015-06-20 23:48 - 00001212 _____ C:\Users\ROGÉRIO\Desktop\Calculator.lnk
2015-12-02 00:08 - 2015-05-08 20:28 - 01491932 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-02 00:08 - 2009-07-14 06:31 - 00654272 _____ C:\Windows\system32\prfh0416.dat
2015-12-02 00:08 - 2009-07-14 06:31 - 00124724 _____ C:\Windows\system32\prfc0416.dat
2015-12-01 22:44 - 2009-07-13 21:23 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys
2015-12-01 17:20 - 2015-05-14 19:52 - 00000000 ____D C:\Users\ROGÉRIO\AppData\LocalLow\IObit
2015-12-01 17:19 - 2015-05-14 19:52 - 00000000 ____D C:\Users\Todos os Usuários\IObit
2015-12-01 17:19 - 2015-05-14 19:52 - 00000000 ____D C:\Users\ROGÉRIO\AppData\Roaming\IObit
2015-12-01 17:19 - 2015-05-14 19:52 - 00000000 ____D C:\ProgramData\IObit
2015-12-01 17:19 - 2015-05-14 19:52 - 00000000 ____D C:\Program Files\IObit
2015-11-29 23:44 - 2015-07-23 12:33 - 00000000 ___RD C:\Users\ROGÉRIO\Desktop\Turma Noite
2015-11-28 15:55 - 2009-07-14 00:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-21 13:14 - 2015-05-08 20:27 - 00000008 _____ C:\Windows\system32\ANIWZCSUSERNAME{4797C8C7-30AF-4BCD-B021-2CE24CA9992D}
2015-11-20 17:40 - 2015-05-08 20:28 - 00003284 _____ C:\Windows\system32\ANIWZCS{4797C8C7-30AF-4BCD-B021-2CE24CA9992D}
2015-11-20 17:40 - 2015-05-08 20:28 - 00003284 _____ C:\Users\ROGÉRIO\AppData\Roaming\ANIWZCS{4797C8C7-30AF-4BCD-B021-2CE24CA9992D}
2015-11-16 22:36 - 2015-07-23 12:33 - 00000000 ___RD C:\Users\ROGÉRIO\Desktop\Turma E
2015-11-09 20:37 - 2015-05-08 20:16 - 00000000 ____D C:\Users\ROGÉRIO
==================== Arquivos na raiz de alguns diretórios =======
2015-05-08 20:28 - 2015-11-20 17:40 - 0003284 _____ () C:\Users\ROGÉRIO\AppData\Roaming\ANIWZCS{4797C8C7-30AF-4BCD-B021-2CE24CA9992D}
2015-11-21 13:27 - 2015-12-08 11:35 - 0003284 _____ () C:\Users\ROGÉRIO\AppData\Roaming\ANIWZCS{6A0561E0-D468-4108-9224-6CD27455084D}
2015-11-28 12:07 - 2015-11-26 07:58 - 4127064 _____ () C:\Users\ROGÉRIO\AppData\Roaming\da3c3f44f7de8ef5.exe
2015-04-19 10:20 - 2015-08-01 19:54 - 0000626 _____ () C:\Users\ROGÉRIO\AppData\Roaming\it0wiCwkmCMx1UyVWhbmd
Alguns arquivos em TEMP:
====================
C:\Users\ROGÉRIO\AppData\Local\Temp\sqlite3.dll
C:\Users\ROGÉRIO\AppData\Local\Temp\{0BA425F4-16AA-4BCA-803D-78979B35C521}-47.0.2526.73_46.0.2490.86_chrome_updater.exe
Alguns com tamanho de zero byte arquivos/pastas:
==========================
C:\Windows\System32\SearchFilterHost.exe
==================== Bamital & volsnap =================
(Não há correção automática para arquivos que não passaram na verificação.)
C:\Windows\explorer.exe => O arquivo é assinado digitalmente
C:\Windows\system32\winlogon.exe => O arquivo é assinado digitalmente
C:\Windows\system32\wininit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\svchost.exe => O arquivo é assinado digitalmente
C:\Windows\system32\services.exe => O arquivo é assinado digitalmente
C:\Windows\system32\User32.dll => O arquivo é assinado digitalmente
C:\Windows\system32\userinit.exe => O arquivo é assinado digitalmente
C:\Windows\system32\rpcss.dll => O arquivo é assinado digitalmente
C:\Windows\system32\dnsapi.dll => O arquivo é assinado digitalmente
C:\Windows\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente
==================== BCD ================================
Gerenciador de Inicializa‡Æo do Windows
--------------------
identificador {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale pt-BR
inherit {globalsettings}
default {current}
resumeobject {ec15d2a0-f5ce-11e4-990d-c77e76053235}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Carregador de Inicializa‡Æo do Windows
-------------------
identificador {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale pt-BR
inherit {bootloadersettings}
recoverysequence {ec15d2a2-f5ce-11e4-990d-c77e76053235}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {ec15d2a0-f5ce-11e4-990d-c77e76053235}
nx OptIn
Carregador de Inicializa‡Æo do Windows
-------------------
identificador {ec15d2a2-f5ce-11e4-990d-c77e76053235}
device ramdisk=[C:]\Recovery\ec15d2a2-f5ce-11e4-990d-c77e76053235\Winre.wim,{ec15d2a3-f5ce-11e4-990d-c77e76053235}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\ec15d2a2-f5ce-11e4-990d-c77e76053235\Winre.wim,{ec15d2a3-f5ce-11e4-990d-c77e76053235}
systemroot \windows
nx OptIn
winpe Yes
Continuar da Hiberna‡Æo
---------------------
identificador {ec15d2a0-f5ce-11e4-990d-c77e76053235}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale pt-BR
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
pae No
debugoptionenabled No
Testador de Mem¢ria do Windows
---------------------
identificador {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Diagn¢stico de Mem¢ria do Windows
locale pt-BR
inherit {globalsettings}
badmemoryaccess Yes
Configura‡äes de EMS
------------
identificador {emssettings}
bootems Yes
Configura‡äes do Depurador
-----------------
identificador {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Defeitos de RAM
-----------
identificador {badmemory}
Configura‡äes Globais
---------------
identificador {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Configura‡äes do Carregador de Inicializa‡Æo
--------------------
identificador {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Configura‡äes do Hypervisor
-------------------
identificador {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Configura‡äes do Carregador de Retorno
----------------------
identificador {resumeloadersettings}
inherit {globalsettings}
Op‡äes de dispositivo
--------------
identificador {ec15d2a3-f5ce-11e4-990d-c77e76053235}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\ec15d2a2-f5ce-11e4-990d-c77e76053235\boot.sdi
LastRegBack: 2015-11-30 11:00
==================== Fim de FRST.txt ============================