Publicité
Publicité
Commentaire : Resultado do exame da Farbar Recovery Scan Tool (FRST) (x64) Versão:21-02-2016 01 Executado por Ponto F (administrador) em LOJA (23-02-2016 19:02:28) Executando a partir de C:\Users\Ponto F\Downloads Perfis Carregados: Ponto F (Perfis Disponíveis: Ponto F) Platform: Windows 8.1 Single Language (X64) Idioma: Português (Brasil) Internet Explorer Versão 11 (Navegador padrão: Chrome) Modo da Inicialização: Normal Tutorial da Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Windows\SysWOW64\PnkBstrA.exe (arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe (Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (GAS Tecnologia) C:\Program Files (x86)\GbPlugin\gbpsv.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Atheros Communications) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe () C:\Program Files\Synaptics\SynTP\DellTouchpad.exe (GAS Tecnologia LTDA) C:\Program Files\Diebold\Warsaw\core.exe () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe (Microsoft Corporation) C:\ProgramData\Microsoft\Windows\WER\wermgr.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Corel Corporation) C:\Program Files\Corel\CorelDRAW Graphics Suite X7\Programs64\CorelDRW.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe (Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe (Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registro (Whitelisted) =========================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6839952 2012-08-31] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-08-17] (Realtek Semiconductor) HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3759504 2012-09-12] (Dell Inc.) HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2461504 2014-09-16] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2917688 2012-09-08] (Synaptics Incorporated) HKLM\...\Run: [DellWPF] => C:\Program Files\Synaptics\SynTP\DellTouchpad.exe [4875576 2012-09-08] () HKLM\...\Run: [Diebold - Warsaw] => C:\Program Files\Diebold\Warsaw\core.exe [858424 2015-06-19] (GAS Tecnologia LTDA) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-07-09] (Intel Corporation) HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [102928 2012-10-23] (CyberLink Corp.) HKLM-x32\...\Run: [mcui_exe] => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058400 2012-01-26] (SEIKO EPSON CORPORATION) HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [3873704 2016-02-01] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [wermgr] => C:\ProgramData\Microsoft\Windows\WER\wermgr.exe [6786560 2015-01-09] (Microsoft Corporation) HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [179624 2016-02-18] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [594992 2016-01-29] (Oracle Corporation) Winlogon\Notify\ GbPluginCef: C:\Program Files (x86)\GbPlugin\gbiehCef.dll [2015-09-01] (Caixa Economica Federal) Winlogon\Notify\ GbPluginUni: C:\Program Files (x86)\GbPlugin\gbiehUni.dll [2015-07-06] (Banco Itaú Unibanco) HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [132736 2013-09-04] (Atheros Communications) HKU\S-1-5-21-3143514481-2851352508-3793348696-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-3143514481-2851352508-3793348696-1002\...\Run: [EPSON T1110 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFEL.EXE [223232 2009-01-07] (SEIKO EPSON CORPORATION) HKU\S-1-5-21-3143514481-2851352508-3793348696-1002\...\MountPoints2: F - "F:\setup.exe" HKU\S-1-5-21-3143514481-2851352508-3793348696-1002\...\MountPoints2: {1517b8bf-b6fa-11e4-bf16-485ab6f4c8be} - "F:\LG_PC_Programs.exe" HKU\S-1-5-21-3143514481-2851352508-3793348696-1002\...\MountPoints2: {25c5b778-8133-11e4-bf14-485ab6f4c8be} - "F:\LGAutoRun.exe" HKU\S-1-5-21-3143514481-2851352508-3793348696-1002\...\MountPoints2: {a3438f84-4e33-11e4-bf07-485ab6f4c8be} - "E:\LG_PC_Programs.exe" AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [176064 2015-05-12] (NVIDIA Corporation) AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [176064 2015-05-12] (NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [154256 2015-05-12] (NVIDIA Corporation) ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399008} - C:\PROGRAM FILES (X86)\GbPlugin\gbiehuni.dll [1759992 2015-07-06] (Banco Itaú Unibanco) ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1867432 2015-09-01] (Caixa Economica Federal) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-01-15] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-01-15] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-01-15] (Google) ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => Nenhum Arquivo ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\system32\mscoree.dll [2013-08-22] (Microsoft Corporation) ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\system32\mscoree.dll [2013-08-22] (Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2014-08-26] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) CHR HKLM\SOFTWARE\Policies\Google: Restrição <======= ATENÇÃO ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 192.168.25.1 192.168.119.1 Tcpip\..\Interfaces\{395EA75D-DA87-478A-AB8C-C1D3C8E5793D}: [DhcpNameServer] 192.168.25.1 192.168.119.1 Tcpip\..\Interfaces\{FB517F37-796E-4EAA-AE04-A0004E365A5A}: [DhcpNameServer] 192.168.25.1 192.168.119.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restrição <======= ATENÇÃO HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\S-1-5-21-3143514481-2851352508-3793348696-1002\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.baixaki.com.br/portal/?utm_source=sol&utm_medium=ppi&utm_campaign=portal SearchScopes: HKLM -> {A25AC313-DD19-4238-ACA2-401D6BEE4321} URL = SearchScopes: HKU\S-1-5-21-3143514481-2851352508-3793348696-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3143514481-2851352508-3793348696-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3143514481-2851352508-3793348696-1002 -> {EAFB69E9-D1C5-4DC1-A37C-46EC700A1D4B} URL = hxxp://www.google.com/search?hl=en&q={searchTerms} BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-01-12] (Microsoft Corporation) BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-01-12] (Microsoft Corporation) BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-01-12] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-20] (Oracle Corporation) BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540003} -> C:\Program Files (x86)\GbPlugin\gbiehcef.dll [2015-09-01] (Caixa Economica Federal) BHO-x32: GbIehObj Class -> {C41A1C0E-EA6C-11D4-B1B8-444553540008} -> C:\PROGRAM FILES (X86)\GBPLUGIN\gbiehuni.dll [2015-07-06] (Banco Itaú Unibanco) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-01-12] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-20] (Oracle Corporation) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION) Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION) FireFox: ======== FF ProfilePath: C:\Users\Ponto F\AppData\Roaming\Mozilla\Firefox\Profiles\v8fwe8mn.default FF DefaultSearchEngine: Pesquisa segura FF SearchEngineOrder.1: Pesquisa segura FF SelectedSearchEngine: Pesquisa segura FF Homepage: www.google.com FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems) FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-02] (Adobe Systems) FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-20] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-20] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems) FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-02] (Adobe Systems) FF Plugin HKU\S-1-5-21-3143514481-2851352508-3793348696-1002: gastecnologia.com.br/sf/cef -> C:\Users\Ponto F\AppData\Local\GAS Tecnologia\GBBD\npsf_cef.dll [2014-12-09] (GAS Tecnologia) FF Plugin HKU\S-1-5-21-3143514481-2851352508-3793348696-1002: gastecnologia.com.br/sf/cef64 -> C:\Users\Ponto F\AppData\Local\GAS Tecnologia\GBBD\npsf_cef_64.dll [2014-12-09] (GAS Tecnologia) FF Plugin HKU\S-1-5-21-3143514481-2851352508-3793348696-1002: gastecnologia.com.br/sf/uni -> C:\Users\Ponto F\AppData\Local\GAS Tecnologia\GBBD\npsf_uni.dll [2014-07-15] (GAS Tecnologia) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation) FF SearchPlugin: C:\Users\Ponto F\AppData\Roaming\Mozilla\Firefox\Profiles\v8fwe8mn.default\searchplugins\McSiteAdvisor.xml [2015-12-02] FF Extension: New Tab by Yahoo - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\jid1-G80Ec8LLEbK5fQ@jetpack.xpi [2016-01-06] FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2015-06-03] [não assinado] Chrome: ======= CHR HomePage: Default -> hxxp://www.mystartsearch.com/?type=sy&ts=1430247148&from=wpc&uid=ST1000LM024XHN-M101MBB_S2VMJ5EDC01064C01064 CHR StartupUrls: Default -> "hxxp://www.google.com.br/" CHR Profile: C:\Users\Ponto F\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (YouTube) - C:\Users\Ponto F\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25] CHR Extension: (Adblock Plus) - C:\Users\Ponto F\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-03] CHR Extension: (Google Search) - C:\Users\Ponto F\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (GBBD Guardião - Itaú 30 horas) - C:\Users\Ponto F\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgmpojlddncminmkddkpoegdjhojjipg [2015-04-30] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Ponto F\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25] CHR Extension: (GBBD Caixa Economica Federal) - C:\Users\Ponto F\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbcaplhfkihhldmlbjhgajdeghjdbffi [2015-04-30] CHR Extension: (Gmail) - C:\Users\Ponto F\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28] CHR HKU\S-1-5-21-3143514481-2851352508-3793348696-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nnjbodopomfddehlalfilheomcahbpei] - C:\Users\Ponto F\AppData\Local\GAS Tecnologia\GBBD\cef\sf.crx <não encontrado (a)> CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx ==================== Serviços (Whitelisted) ======================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [312448 2013-09-04] (Windows (R) Win 7 DDK provider) [Arquivo não assinado] S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [604144 2016-02-01] (AVG Technologies CZ, s.r.o.) R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [3881184 2016-02-01] (AVG Technologies CZ, s.r.o.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1045928 2016-02-18] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [561104 2016-02-01] (AVG Technologies CZ, s.r.o.) R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2571352 2016-01-05] (Dell Inc.) R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201816 2016-01-05] (Dell Inc.) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation) R2 GbpSv; C:\Program Files (x86)\GbPlugin\gbpsv.exe [587576 2015-08-13] (GAS Tecnologia) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1149760 2014-09-16] (NVIDIA Corporation) R2 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-07-09] (Intel Corporation) [Arquivo não assinado] R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2464400 2012-09-08] (Realsil Microelectronics Inc.) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-21] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation) R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Arquivo não assinado] R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1796928 2014-09-16] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19440960 2014-09-16] (NVIDIA Corporation) R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Arquivo não assinado] R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76152 2015-10-05] () R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2013-09-13] (arvato digital services llc) R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] () R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915480 2013-05-23] (SoftThinks SAS) R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31928 2016-01-12] (Dell Inc.) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Arquivo não assinado] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5436176 2015-02-17] (TeamViewer GmbH) R2 Warsaw Technology; C:\Program Files\Diebold\Warsaw\core.exe [858424 2015-06-19] (GAS Tecnologia LTDA) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [1215560 2016-02-23] () ===================== Drivers (Whitelisted) ========================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) S3 androidusb; C:\Windows\System32\Drivers\lgandadb.sys [31744 2010-08-01] (Google Inc) R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.) S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.) R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [184240 2015-11-06] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [315312 2016-01-05] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [272304 2016-01-08] (AVG Technologies CZ, s.r.o.) R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [284080 2015-10-21] (AVG Technologies CZ, s.r.o.) R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [398256 2015-08-14] (AVG Technologies CZ, s.r.o.) R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [260528 2016-01-22] (AVG Technologies CZ, s.r.o.) R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [42416 2015-12-04] (AVG Technologies CZ, s.r.o.) R0 Avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [23472 2016-01-08] (AVG Technologies CZ, s.r.o.) R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [315840 2015-12-16] (AVG Technologies CZ, s.r.o.) S3 BM0523; C:\Windows\system32\DRIVERS\BM0523.sys [26352 2012-10-21] (ShenZhen ShanWan Technology Co., Ltd.) R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-04] (Qualcomm Atheros) R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink) R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-02-26] (Dell Computer Corporation) R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2015-09-11] (Dell Computer Corporation) S3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-24] (OSR Open Systems Resources, Inc.) S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider) R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-09-15] (Disc Soft Ltd) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-02-23] () R3 GBPRCM; C:\Program Files (x86)\GbPlugin\gbprcm64.sys [29912 2015-09-03] (GAS Tecnologia) S3 lehidmini; C:\Windows\System32\drivers\leath_hid.sys [39704 2013-02-28] (Atheros) S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80160 2015-02-13] (McAfee, Inc.) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20288 2014-09-16] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation) R1 pofilterdrv; C:\Windows\System32\drivers\pofilterdrv.sys [64832 2014-08-29] (Windows (R) Win 7 DDK provider) R0 rtcrfilt64; C:\Windows\System32\DRIVERS\rtcrfilt64.sys [19600 2012-09-05] (Realtek Semiconductor Corp.) S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-09-08] (Synaptics Incorporated) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-09-08] (Synaptics Incorporated) S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Apple, Inc.) [Arquivo não assinado] R3 Warsaw_PP; C:\Program Files (x86)\GbPlugin\wsftprp64.sys [24792 2014-11-03] (GAS Tecnologia LTDA) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) R4 WinDivert1.1; C:\Program Files\Diebold\Warsaw\WinDivert64.sys [38104 2015-04-01] (Basil) S3 BprotectEx; \??\C:\WINDOWS\System32\drivers\BprotectEx.sys [X] S1 gbpddfac; system32\drivers\gbpddfac64.sys [X] U2 McMPFSvc; não ImagePath S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\4.0.0.0\PCFApiUtil64.sys [X] S3 qca_shb; \SystemRoot\System32\drivers\qca_shb.sys [X] ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um Mês Criados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-02-23 19:02 - 2016-02-23 19:03 - 00031628 _____ C:\Users\Ponto F\Downloads\FRST.txt 2016-02-23 19:02 - 2016-02-23 19:02 - 02371072 _____ (Farbar) C:\Users\Ponto F\Downloads\FRST64.exe 2016-02-23 19:02 - 2016-02-23 19:02 - 00000000 ____D C:\FRST 2016-02-23 19:01 - 2016-02-23 19:01 - 01722368 _____ (Farbar) C:\Users\Ponto F\Downloads\FRST.exe 2016-02-23 17:27 - 2016-02-23 17:27 - 00000000 ___RD C:\Users\Ponto F\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2016-02-23 17:17 - 2016-02-23 17:17 - 00236139 _____ C:\Users\Ponto F\Desktop\comprovante ans.pdf 2016-02-23 16:25 - 2016-02-23 16:25 - 01511936 _____ C:\Users\Ponto F\Downloads\adwcleaner_5.036.exe 2016-02-23 16:22 - 2016-02-23 16:22 - 02730000 _____ C:\Users\Ponto F\Desktop\cartao com bombom.pdf 2016-02-23 16:16 - 2016-02-23 16:17 - 09641808 _____ (Crawler Group ) C:\Users\Ponto F\Downloads\SpywareTerminatorSetup.exe 2016-02-23 16:13 - 2016-02-23 16:13 - 03286400 _____ (Enigma Software Group USA, LLC.) C:\Users\Ponto F\Downloads\SpyHunter-Installer (1).exe 2016-02-23 10:08 - 2016-02-23 10:08 - 00000000 _____ C:\autoexec.bat 2016-02-23 10:07 - 2016-02-23 10:07 - 00022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys 2016-02-23 09:53 - 2016-02-23 09:53 - 03286400 _____ (Enigma Software Group USA, LLC.) C:\Users\Ponto F\Downloads\SpyHunter-Installer.exe 2016-02-22 10:33 - 2016-02-22 10:33 - 00098079 ____T C:\Users\Ponto F\Documents\cheque 148.oxps 2016-02-22 10:32 - 2016-02-22 10:32 - 00091652 ____T C:\Users\Ponto F\Documents\cheque 141.oxps 2016-02-20 23:55 - 2016-02-20 23:55 - 00000000 ____D C:\Users\Ponto F\AppData\LocalLow\uTorrent 2016-02-19 18:47 - 2016-02-19 18:47 - 01039894 _____ C:\Users\Ponto F\Desktop\cartao com bombom.cdr 2016-02-19 18:21 - 2016-02-19 18:23 - 52792956 _____ C:\Users\Ponto F\Downloads\DIY- Carta bombom - Dia dos pais.mp4 2016-02-19 12:42 - 2016-02-19 17:52 - 00666695 _____ C:\Users\Ponto F\Desktop\cartoao com bombom.cdr 2016-02-19 12:42 - 2016-02-19 12:42 - 00024619 _____ C:\Users\Ponto F\Desktop\Backup_of_cartoao com bombom.cdr 2016-02-19 12:14 - 2016-02-19 12:14 - 00650651 _____ C:\Users\Ponto F\Downloads\49.zip 2016-02-18 13:24 - 2016-02-18 13:24 - 00002895 _____ C:\Users\Ponto F\Downloads\comprovante (51).html 2016-02-18 13:14 - 2016-02-18 13:14 - 02665128 _____ (CAIXA) C:\Users\Ponto F\Downloads\iGBPCEFwr.exe 2016-02-15 13:14 - 2016-02-15 13:14 - 01327779 _____ C:\Users\Ponto F\Desktop\1502 lucimar.cdr 2016-02-10 12:13 - 2016-01-22 05:01 - 22365992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2016-02-10 12:13 - 2016-01-22 04:11 - 19794896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2016-02-10 12:13 - 2016-01-22 02:25 - 14467072 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-02-10 12:13 - 2016-01-22 02:14 - 12879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2016-02-10 12:13 - 2016-01-22 02:07 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll 2016-02-10 12:13 - 2016-01-22 01:58 - 02464256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll 2016-02-10 12:11 - 2016-01-14 22:42 - 00033472 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2016-02-10 12:11 - 2016-01-14 17:44 - 01362944 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-02-10 12:11 - 2016-01-14 17:44 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2016-02-10 12:11 - 2016-01-14 17:44 - 00696320 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2016-02-10 12:11 - 2016-01-14 17:44 - 00677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2016-02-10 12:11 - 2016-01-14 17:44 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2016-02-10 12:11 - 2016-01-14 17:44 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2016-02-10 12:10 - 2016-01-10 16:37 - 00442720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2016-02-10 12:10 - 2016-01-10 16:37 - 00136912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2016-02-10 12:10 - 2016-01-10 15:39 - 00332640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2016-02-10 12:10 - 2016-01-10 15:15 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2016-02-10 12:10 - 2016-01-10 15:15 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2016-02-10 12:10 - 2016-01-10 14:43 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll 2016-02-10 12:10 - 2016-01-10 14:09 - 01442304 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-02-10 12:10 - 2016-01-10 14:09 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll 2016-02-10 12:10 - 2016-01-10 13:56 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll 2016-02-10 12:10 - 2016-01-10 13:51 - 03707392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2016-02-10 12:10 - 2016-01-10 13:39 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe 2016-02-10 12:10 - 2016-01-10 13:38 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll 2016-02-10 12:10 - 2016-01-10 13:36 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll 2016-02-10 12:10 - 2016-01-10 13:36 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2016-02-10 12:10 - 2016-01-10 13:35 - 02243584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll 2016-02-10 12:10 - 2016-01-10 13:35 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2016-02-10 12:10 - 2016-01-10 13:29 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll 2016-02-10 12:10 - 2016-01-10 13:29 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe 2016-02-10 12:10 - 2016-01-10 13:27 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2016-02-10 12:10 - 2016-01-10 13:26 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2016-02-10 11:53 - 2016-02-06 07:48 - 25839104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-02-10 11:53 - 2016-02-06 07:24 - 02887680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-02-10 11:53 - 2016-02-06 07:01 - 20366848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-02-10 11:53 - 2016-02-06 06:43 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2016-02-10 11:53 - 2016-02-06 06:32 - 14458368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-02-10 11:53 - 2016-02-06 06:16 - 12857856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-02-10 11:53 - 2016-02-06 06:09 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-02-10 11:53 - 2016-02-06 05:54 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-02-10 10:32 - 2016-01-10 14:50 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll 2016-02-10 10:32 - 2016-01-10 14:31 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll 2016-02-10 10:32 - 2016-01-10 14:16 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2016-02-10 10:32 - 2016-01-10 14:14 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cfgbkend.dll 2016-02-10 10:32 - 2016-01-10 14:12 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll 2016-02-10 10:32 - 2016-01-10 13:58 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll 2016-02-10 10:32 - 2016-01-10 13:51 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2016-02-10 10:32 - 2016-01-10 13:49 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EncDec.dll 2016-02-10 10:32 - 2016-01-10 13:40 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll 2016-02-10 10:31 - 2015-12-29 12:45 - 07783936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2016-02-10 10:31 - 2015-12-29 12:45 - 07075328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll 2016-02-10 10:31 - 2015-12-29 12:43 - 05267968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll 2016-02-10 10:31 - 2015-12-29 12:42 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-02-10 10:30 - 2016-01-10 14:02 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2016-02-10 10:30 - 2016-01-10 13:43 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2016-02-10 10:30 - 2016-01-07 15:34 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2016-02-10 10:28 - 2016-01-19 16:14 - 07453024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-02-10 10:28 - 2016-01-19 16:13 - 02175008 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2016-02-10 10:28 - 2016-01-19 16:13 - 01063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2016-02-10 10:28 - 2016-01-19 16:12 - 01737088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2016-02-10 10:28 - 2016-01-19 16:12 - 01133744 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2016-02-10 10:28 - 2016-01-19 15:23 - 01564496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2016-02-10 10:28 - 2016-01-19 15:23 - 01501496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2016-02-10 10:28 - 2016-01-19 15:23 - 00548024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2016-02-10 10:28 - 2016-01-19 15:15 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll 2016-02-10 10:28 - 2016-01-19 14:30 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2016-02-10 10:28 - 2016-01-19 13:37 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2016-02-10 10:28 - 2016-01-06 15:25 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys 2016-02-10 10:23 - 2016-01-22 03:40 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-02-10 10:23 - 2016-01-22 03:29 - 06052352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-02-10 10:23 - 2016-01-22 03:28 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll 2016-02-10 10:23 - 2016-01-22 03:27 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2016-02-10 10:23 - 2016-01-22 03:02 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2016-02-10 10:23 - 2016-01-22 02:55 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2016-02-10 10:23 - 2016-01-22 02:52 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll 2016-02-10 10:23 - 2016-01-22 02:51 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2016-02-10 10:23 - 2016-01-22 02:50 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll 2016-02-10 10:23 - 2016-01-22 02:48 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2016-02-10 10:23 - 2016-01-22 02:48 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2016-02-10 10:23 - 2016-01-22 02:47 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2016-02-10 10:23 - 2016-01-22 02:46 - 02123264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2016-02-10 10:23 - 2016-01-22 02:35 - 04611072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2016-02-10 10:23 - 2016-01-22 02:31 - 02597376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2016-02-10 10:23 - 2016-01-22 02:31 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2016-02-10 10:23 - 2016-01-22 02:28 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2016-02-10 10:23 - 2016-01-22 02:27 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll 2016-02-10 10:23 - 2016-01-22 02:25 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2016-02-10 10:23 - 2016-01-22 02:25 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2016-02-10 10:23 - 2016-01-22 02:24 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2016-02-10 10:23 - 2016-01-22 02:08 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2016-02-10 10:23 - 2016-01-22 02:07 - 02120704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2016-02-10 10:23 - 2016-01-22 02:02 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2016-02-10 10:23 - 2015-12-28 18:42 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll 2016-02-10 10:23 - 2015-12-28 17:31 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll 2016-02-10 10:22 - 2015-12-17 15:29 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2016-02-10 10:22 - 2015-12-17 13:17 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2016-01-30 14:33 - 2016-01-30 14:33 - 00016384 _____ C:\Users\Ponto F\Documents\julia.pdf 2016-01-29 10:50 - 2016-01-29 10:50 - 00004024 _____ C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask 2016-01-29 10:50 - 2016-01-29 10:50 - 00003484 _____ C:\WINDOWS\System32\Tasks\PCDEventLauncherTask 2016-01-29 10:50 - 2016-01-29 10:50 - 00003336 _____ C:\WINDOWS\System32\Tasks\PCDDataUploadTask 2016-01-29 10:50 - 2016-01-29 10:50 - 00003214 _____ C:\WINDOWS\System32\Tasks\SystemToolsDailyTest 2016-01-29 10:50 - 2016-01-29 10:50 - 00000000 ____D C:\Users\Todos os Usuários\PC-Doctor for Windows 2016-01-29 10:50 - 2016-01-29 10:50 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows 2016-01-29 10:50 - 2016-01-29 10:50 - 00000000 ____D C:\Program Files\Dell Support Center 2016-01-29 10:46 - 2016-01-29 10:46 - 00000000 __HDC C:\Users\Todos os Usuários\{010DD54D-6F97-418D-BC47-2089F30A0075} 2016-01-29 10:46 - 2016-01-29 10:46 - 00000000 __HDC C:\ProgramData\{010DD54D-6F97-418D-BC47-2089F30A0075} 2016-01-28 11:16 - 2016-01-28 11:16 - 00000786 _____ C:\Users\Ponto F\Desktop\Dragonball Xenoverse.lnk 2016-01-28 11:15 - 2016-01-28 11:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragonball Xenoverse 2016-01-28 09:25 - 2016-01-28 09:25 - 05558638 _____ C:\Users\Ponto F\Downloads\TorrentGamesBiz-Crack-Traduzido-Dragonball-XenoVerse.rar 2016-01-28 09:24 - 2016-02-18 16:23 - 00000000 ____D C:\Users\Ponto F\Downloads\dowloads torrents 2016-01-28 09:21 - 2016-01-30 08:24 - 08388608 _____ C:\Users\Ponto F\Downloads\Dragon_Ball_Z_Budokai_Tenkaichi_3_PC_2010.vhdx 2016-01-27 09:03 - 2016-01-27 09:03 - 00000000 ____D C:\Program Files (x86)\Yahoo! ==================== Um Mês Modificados arquivos e pastas ======== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2016-02-23 18:10 - 2015-06-23 10:00 - 00000000 ____D C:\Users\Todos os Usuários\MFAData 2016-02-23 18:10 - 2015-06-23 10:00 - 00000000 ____D C:\ProgramData\MFAData 2016-02-23 18:04 - 2014-08-14 18:10 - 00001086 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-02-23 17:34 - 2014-01-20 22:47 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery 2016-02-23 17:30 - 2014-03-18 07:09 - 01800588 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-02-23 17:30 - 2014-03-18 06:29 - 00775938 _____ C:\WINDOWS\system32\prfh0416.dat 2016-02-23 17:30 - 2014-03-18 06:29 - 00159030 _____ C:\WINDOWS\system32\prfc0416.dat 2016-02-23 17:30 - 2013-08-22 10:36 - 00000000 ____D C:\WINDOWS\Inf 2016-02-23 17:26 - 2015-02-19 13:39 - 00000000 ____D C:\Program Files (x86)\GbPlugin 2016-02-23 17:23 - 2014-08-14 18:10 - 00001082 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-02-23 17:22 - 2013-08-22 11:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-02-23 17:21 - 2013-08-22 10:25 - 01572864 ___SH C:\WINDOWS\system32\config\BBI 2016-02-23 17:20 - 2014-10-29 17:51 - 00000000 ____D C:\AdwCleaner 2016-02-23 17:20 - 2014-09-30 19:20 - 00000000 ____D C:\Users\Ponto F 2016-02-23 16:07 - 2014-10-02 16:40 - 00003934 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1B6736A5-172B-40B2-BE22-FB5C7AD4934C} 2016-02-23 10:34 - 2015-07-16 10:43 - 00000000 ____D C:\Users\Todos os Usuários\AVG Web TuneUp 2016-02-23 10:34 - 2015-07-16 10:43 - 00000000 ____D C:\ProgramData\AVG Web TuneUp 2016-02-23 10:33 - 2015-07-16 10:43 - 00000000 ____D C:\Program Files\AVG Web TuneUp 2016-02-23 10:33 - 2015-07-16 10:43 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp 2016-02-23 10:01 - 2014-04-25 14:48 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3143514481-2851352508-3793348696-1002 2016-02-23 09:44 - 2014-03-19 11:41 - 00000000 ____D C:\Users\Ponto F\AppData\Local\CrashDumps 2016-02-22 09:50 - 2013-08-22 10:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM 2016-02-21 01:36 - 2014-08-15 13:09 - 00000000 ____D C:\Users\Ponto F\AppData\Roaming\uTorrent 2016-02-20 23:54 - 2014-10-01 15:26 - 00000000 ____D C:\Users\Ponto F\AppData\Roaming\Atheros 2016-02-20 13:31 - 2014-03-10 11:33 - 00000000 ____D C:\Users\Ponto F\Documents\Bluetooth Folder 2016-02-20 13:27 - 2014-09-22 11:49 - 00000000 ____D C:\Users\Todos os Usuários\Oracle 2016-02-20 13:27 - 2014-09-22 11:49 - 00000000 ____D C:\ProgramData\Oracle 2016-02-20 12:29 - 2014-08-16 17:51 - 00000000 ____D C:\Users\Ponto F\AppData\Local\Adobe 2016-02-20 12:19 - 2014-08-15 14:59 - 00000000 ____D C:\Users\Ponto F\Documents\Caneca pra entrgar 2016-02-20 09:11 - 2015-10-03 13:37 - 00002232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-02-20 09:11 - 2015-10-03 13:37 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-02-20 08:54 - 2014-10-17 14:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-02-20 08:54 - 2014-10-17 14:53 - 00000000 ____D C:\Program Files (x86)\Java 2016-02-20 08:53 - 2015-09-09 13:37 - 00000000 ____D C:\Users\Ponto F\.oracle_jre_usage 2016-02-20 08:52 - 2014-10-17 14:53 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2016-02-17 11:23 - 2014-03-10 11:30 - 00000000 ____D C:\Users\Ponto F\AppData\Local\Packages 2016-02-17 11:22 - 2014-10-02 18:10 - 03424256 ___SH C:\Users\Ponto F\Downloads\Thumbs.db 2016-02-11 12:51 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\rescache 2016-02-11 10:05 - 2015-06-23 10:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2016-02-11 10:05 - 2012-07-26 05:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP 2016-02-11 08:41 - 2013-08-22 11:44 - 05242104 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-02-10 18:36 - 2014-12-10 18:56 - 00000000 ____D C:\WINDOWS\system32\appraiser 2016-02-10 18:36 - 2014-03-18 06:44 - 00000000 ____D C:\Program Files\Windows Journal 2016-02-10 18:36 - 2013-08-22 12:36 - 00000000 ___RD C:\WINDOWS\ToastData 2016-02-10 12:48 - 2014-11-19 10:04 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help 2016-02-10 12:48 - 2013-08-22 12:36 - 00000000 ___HD C:\Program Files\WindowsApps 2016-02-10 12:48 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-02-10 12:48 - 2012-07-26 04:59 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-02-10 12:47 - 2014-08-15 13:13 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2016-02-10 12:46 - 2012-07-26 02:26 - 00000234 _____ C:\WINDOWS\win.ini 2016-02-10 12:41 - 2014-08-16 16:47 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-02-10 12:32 - 2014-08-16 16:47 - 146614896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-02-10 12:07 - 2015-11-12 09:55 - 00561952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2016-02-10 12:07 - 2015-11-12 09:55 - 00177496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2016-02-06 09:29 - 2015-04-13 11:05 - 00258048 ___SH C:\Users\Ponto F\Documents\Thumbs.db 2016-02-05 10:10 - 2014-09-15 15:59 - 00000000 ____D C:\Users\Ponto F\.umplayer 2016-02-03 10:17 - 2013-08-22 12:36 - 00000000 ____D C:\WINDOWS\system32\NDF 2016-02-03 08:59 - 2014-08-14 18:10 - 00004058 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2016-02-03 08:59 - 2014-08-14 18:10 - 00003822 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2016-02-01 23:37 - 2015-11-13 09:00 - 00828920 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-02-01 23:37 - 2015-11-13 09:00 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2016-01-29 10:50 - 2014-01-20 22:37 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell 2016-01-29 10:49 - 2014-01-20 22:37 - 00000000 ____D C:\Users\Todos os Usuários\PCDr 2016-01-29 10:49 - 2014-01-20 22:37 - 00000000 ____D C:\ProgramData\PCDr 2016-01-29 10:47 - 2015-03-19 18:09 - 00000000 ____D C:\Users\Todos os Usuários\SupportAssistAgent 2016-01-29 10:47 - 2015-03-19 18:09 - 00000000 ____D C:\ProgramData\SupportAssistAgent 2016-01-28 10:53 - 2014-10-09 16:50 - 00000000 ____D C:\Games 2016-01-28 09:24 - 2016-01-18 17:52 - 00000000 ____D C:\Users\Ponto F\Downloads\Charlie Brown Jr 2016-01-27 09:00 - 2015-07-16 10:44 - 00000000 ____D C:\Users\Ponto F\AppData\Local\AVG Web TuneUp 2016-01-26 14:27 - 2014-08-22 18:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive ==================== Arquivos na raiz de alguns diretórios ======= 2015-06-30 17:21 - 2015-06-30 17:21 - 0000240 _____ () C:\Users\Ponto F\AppData\Roaming\MPUI.ini 2014-08-17 14:28 - 2014-08-17 14:35 - 0000132 _____ () C:\Users\Ponto F\AppData\Roaming\Preferências do Formato PNG do Adobe CS6 2015-04-18 14:09 - 2015-04-18 14:09 - 0016532 _____ () C:\Users\Ponto F\AppData\Roaming\unins000.dat 2015-04-18 14:09 - 2015-04-18 14:09 - 0730322 _____ () C:\Users\Ponto F\AppData\Roaming\unins000.exe 2015-02-19 13:38 - 2015-02-19 13:38 - 0015826 _____ () C:\Users\Ponto F\AppData\Roaming\unins001.dat 2015-02-19 13:38 - 2015-02-19 13:29 - 0720082 _____ () C:\Users\Ponto F\AppData\Roaming\unins001.exe 2014-09-27 16:32 - 2014-10-09 10:32 - 0000065 _____ () C:\Users\Ponto F\AppData\Roaming\WB.CFG 2014-10-25 17:26 - 2014-10-25 17:26 - 0627760 _____ (CMI Limited) C:\Users\Ponto F\AppData\Local\nso70D4.tmp 2014-08-28 14:13 - 2015-05-21 13:34 - 0007601 _____ () C:\Users\Ponto F\AppData\Local\Resmon.ResmonCfg 2015-11-07 09:16 - 2015-11-07 09:16 - 0000000 _____ () C:\Users\Ponto F\AppData\Local\{E0696CB2-20F4-46A8-B22B-B0E0E54DF13B} 2014-10-25 17:32 - 2014-10-25 17:32 - 0000746 _____ () C:\ProgramData\bc.ini 2014-08-26 12:07 - 2014-08-31 18:38 - 0001694 _____ () C:\ProgramData\hpzinstall.log 2014-01-20 22:44 - 2014-01-20 22:45 - 0000119 _____ () C:\ProgramData\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}.log 2014-01-20 22:39 - 2014-01-20 22:41 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log 2014-01-20 22:41 - 2014-01-20 22:43 - 0000111 _____ () C:\ProgramData\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}.log 2014-01-20 22:39 - 2014-01-20 22:39 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log 2014-01-20 22:43 - 2014-01-20 22:44 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log Alguns arquivos em TEMP: ==================== C:\Users\Ponto F\AppData\Local\Temp\1_Offer_4.exe C:\Users\Ponto F\AppData\Local\Temp\310714_b4.exe C:\Users\Ponto F\AppData\Local\Temp\310714_tw.exe C:\Users\Ponto F\AppData\Local\Temp\4E11.exe C:\Users\Ponto F\AppData\Local\Temp\aplicativoitau.exe C:\Users\Ponto F\AppData\Local\Temp\avg-54186446-aaed-4303-aa66-102764f29f44.exe C:\Users\Ponto F\AppData\Local\Temp\avg-9a45070b-41a8-4f4d-a6aa-2c5a0d8f6164.exe C:\Users\Ponto F\AppData\Local\Temp\avg-ade4ea11-2a35-4d72-931a-d8671a3fb96a.exe C:\Users\Ponto F\AppData\Local\Temp\avguirn_081499428611.exe C:\Users\Ponto F\AppData\Local\Temp\avguirn_08985794958.exe C:\Users\Ponto F\AppData\Local\Temp\Baidu_Secure_SystemUp_4.0.9.76716.exe C:\Users\Ponto F\AppData\Local\Temp\IPCameraViewer.exe C:\Users\Ponto F\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe C:\Users\Ponto F\AppData\Local\Temp\jre-8u31-windows-au.exe C:\Users\Ponto F\AppData\Local\Temp\jre-8u60-windows-au.exe C:\Users\Ponto F\AppData\Local\Temp\jre-8u65-windows-au.exe C:\Users\Ponto F\AppData\Local\Temp\jre-8u66-windows-au.exe C:\Users\Ponto F\AppData\Local\Temp\jre-8u71-windows-au.exe C:\Users\Ponto F\AppData\Local\Temp\jre-8u73-windows-au.exe C:\Users\Ponto F\AppData\Local\Temp\McCSPInstall.dll C:\Users\Ponto F\AppData\Local\Temp\mccspuninstall.exe C:\Users\Ponto F\AppData\Local\Temp\ose00000.exe C:\Users\Ponto F\AppData\Local\Temp\ose00003.exe C:\Users\Ponto F\AppData\Local\Temp\PidGenX.dll C:\Users\Ponto F\AppData\Local\Temp\Quarantine.exe C:\Users\Ponto F\AppData\Local\Temp\SecurityMonitorPro.exe C:\Users\Ponto F\AppData\Local\Temp\sqlite3.dll C:\Users\Ponto F\AppData\Local\Temp\ytb.exe C:\Users\Ponto F\AppData\Local\Temp\_is8223.exe C:\Users\Ponto F\AppData\Local\Temp\_isA873.exe C:\Users\Ponto F\AppData\Local\Temp\_isD4F6.exe C:\Users\Ponto F\AppData\Local\Temp\{235E478B-6340-4AE8-B75F-339D3E997BE8}-40.0.2214.115_39.0.2171.99_chrome_updater.exe ==================== Bamital & volsnap ================= (Não há correção automática para arquivos que não passaram na verificação.) C:\WINDOWS\system32\winlogon.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\wininit.exe => O arquivo é assinado digitalmente C:\WINDOWS\explorer.exe => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\explorer.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\svchost.exe => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\svchost.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\services.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\User32.dll => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\User32.dll => O arquivo é assinado digitalmente C:\WINDOWS\system32\userinit.exe => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\userinit.exe => O arquivo é assinado digitalmente C:\WINDOWS\system32\rpcss.dll => O arquivo é assinado digitalmente C:\WINDOWS\system32\dnsapi.dll => O arquivo é assinado digitalmente C:\WINDOWS\SysWOW64\dnsapi.dll => O arquivo é assinado digitalmente C:\WINDOWS\system32\Drivers\volsnap.sys => O arquivo é assinado digitalmente LastRegBack: 2016-02-23 17:37 ==================== Fim de FRST.txt ============================ Resultado do exame Adicional Farbar Recovery Scan Tool (x64) Versão:21-02-2016 01 Executado por Ponto F (2016-02-23 19:03:30) Executando a partir de C:\Users\Ponto F\Downloads Windows 8.1 Single Language (X64) (2014-09-30 22:50:45) Modo da Inicialização: Normal ========================================================== ==================== Contas: ============================= Administrador (S-1-5-21-3143514481-2851352508-3793348696-500 - Administrator - Disabled) Convidado (S-1-5-21-3143514481-2851352508-3793348696-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3143514481-2851352508-3793348696-1005 - Limited - Enabled) Ponto F (S-1-5-21-3143514481-2851352508-3793348696-1002 - Administrator - Enabled) => C:\Users\Ponto F ==================== Central de Segurança ======================== (Se uma entrada for incluída na fixlist, será removida.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Programas Instalados ====================== (Somente os programas adwares com a indicação "Oculto" podem ser adicionados à fixlist para desocultá-los. Os programas adwares devem ser desinstalados manualmente.) µTorrent (HKU\S-1-5-21-3143514481-2851352508-3793348696-1002\...\uTorrent) (Version: 3.4.5.41712 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY) ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden Aplicativo Itaú (HKLM-x32\...\{DB13E590-A006-4556-8DF4-67EB5F1B2EB5}) (Version: 1.0.57 - Banco Itaú) Atualizações da NVIDIA 16.13.42 (Version: 16.13.42 - NVIDIA Corporation) Hidden AVG (HKLM\...\AvgZen) (Version: 1.31.1.48846 - AVG Technologies) AVG (Version: 16.41.7442 - AVG Technologies) Hidden AVG 2016 (Version: 16.0.4537 - AVG Technologies) Hidden AVG Protection (HKLM\...\AVG) (Version: 2016.41.7442 - AVG Technologies) AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.2.6.552 - AVG Technologies) AVG Zen (Version: 1.31.9 - AVG Technologies) Hidden Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts) Battlefield 4 versão 1.0.8.0 (HKLM-x32\...\Battlefield 4_is1) (Version: 1.0.8.0 - Origin Games) Battlefield™ Hardline (HKLM-x32\...\{CB4AC3DA-8CC1-4516-86DA-4078B57DB229}) (Version: 1.1.0.5 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB) BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden CGS17_Setup_x64 (Version: 17.0 - Corel Corporation) Hidden Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden Corel Graphics - Windows Shell Extension (HKLM-x32\...\_{B865FDD4-E96E-4166-BB69-6E8C207E3E29}) (Version: 17.0.0.491 - Corel Corporation) Corel Graphics - Windows Shell Extension (x32 Version: 17.0.491 - Corel Corporation) Hidden Corel Graphics - Windows Shell Extension 64 Bit (Version: 17.0.491 - Corel Corporation) Hidden CorelDRAW Graphics Suite 12 (HKLM-x32\...\{505AFDC0-5E72-4928-8368-5DEA385E3647}) (Version: 12.0.0.458 - Corel Corporation) CorelDRAW Graphics Suite X7 - Capture (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Common (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Connect (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Custom Data (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Draw (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - EN (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Filters (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - FontNav (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - IPM Content (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - IPM T (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - PHOTO-PAINT (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Photozoom Plugin (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Redist (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Setup Files (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - VBA (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - VideoBrowser (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 - Writing Tools (x64) (Version: 17.0 - Corel Corporation) Hidden CorelDRAW Graphics Suite X7 (64-Bit) (HKLM\...\_{5CB73140-806C-42C6-A05A-1AFD0E92DEB5}) (Version: 17.0.0.491 - Corel Corporation) CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.5.0.0 - Dell Inc.) Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.5.0.0 - Dell Inc.) Dell Data Vault (Version: 4.3.7.0 - Dell Inc.) Hidden Dell Digital Delivery (HKLM-x32\...\{B96348BD-6B0D-42E3-80B1-FA6718067BFE}) (Version: 2.8.1000.0 - Dell Products, LP) Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.2.6745.47 - Dell) Dell SupportAssistAgent (HKLM-x32\...\{A62A2F03-3006-40CA-A3FA-C1086B2FEF5D}) (Version: 1.2.0.94 - Dell) Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 16.2.12.13 - Synaptics Incorporated) Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.) Desinstalar impressora EPSON T1110 Series (HKLM\...\EPSON T1110 Series) (Version: - SEIKO EPSON Corporation) Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden DJ_AIO_03_F4200_Software_Min (x32 Version: 140.0.425.000 - Hewlett-Packard) Hidden DJ_AIO_NS_LP_DocCD (x32 Version: 90.0.222.000 - Hewlett-Packard) Hidden DJ_AIO_ProductContext (x32 Version: 140.0.425.
Format du document : text/plain
Prévisualisation